Methods and apparatus for title structure and management

ABSTRACT

A title management apparatus resident on a first computer including a memory for storing a control program and data, and a processor for executing the control program and for managing the data. The apparatus includes user data resident in the memory including a set of user security indicia. The apparatus also includes a first title object resident in the memory including a title structure, the title structure further comprising a content element, a set of attributes, and a set of title object security indicia. The apparatus further includes a set of stub objects coupled to the title object, wherein the set of stub objects can further optimize the title structure; an authorization structure configured to selectively redeem the content element based at least in part of the user security indicia; and, a title management structure configured to associate a user with the first title object based at least in part of the user data and the title attributes.

REFERENCE TO RELATED APPLICATIONS

This application is a continuation-in-part of U.S. Ser. No. 10/232,861filed on Aug. 30, 2002.

This application claims priority to U.S. Prov. No. 60/380,787 filed May15, 2002, U.S. Prov. No. 60/407,466 filed Aug. 30, 2002, and U.S. Prov.No. 60/407,382 filed Aug. 30, 2002.

TECHNICAL FIELD

The invention relates to an advanced title and transaction network. Inparticular, the invention provides an architecture and operation for thefacilitation of the creation, ownership, exchange, management,reselling, marketing, bartering, and auctioning of titles over anelectronic network such as the Internet.

BACKGROUND OF THE INVENTION

The Internet has become an efficient mechanism for globally distributingdigital content, such as documents, pictures, music, and other types ofdigital content. Information can now be transmitted directly andinstantly across the Internet from the content owner to the contentbuyer, without having to first convert it into physical form, such aspaper documents, compact disks, photographs, etc.

However, the advantage of easy digital communication has also alloweddigital content to be easily pirated by just about anyone with acomputer and Internet access. The combination of high-speed broadbandInternet access, digital content compression software (which reduces thesize of digital content files), peer-to-peer file trading networks(which allows users to post content files), and lack of a viable digitalrights standard, has caused the content owners to lose control of theircontent. Consequently, content owners are experiencing a loss ofpotential revenue.

The lack of a standardized and transparent digital rights managementsystem, however, is preventing a commercially viable solution fromemerging. In order for such a system to be commercially viable, thesystem should be secure both from the user's and the content owner'sstandpoint, universal so that electronic device manufactures areencouraged to engineer it into their products, and transparent so thatusers are not required to change their behavior.

Existing systems that attempt to provide confidence between buyersinclude escrow agreements, third party confirmations, third partyappraisals and other similar techniques. These systems are slow andcomplex, and they do not provide the content user with sufficientconfidence that the buyers and sellers are not illegally replicating thecontent or otherwise attempting to sell pirated copies of works.

In addition to the pirating aspects associated with sharing digitalcontent, users are burdened with less than ideal methods for legallysharing digital content. These cumbersome methods include transferringentire files to other users via electronic mail, instant messenger,peer-to-peer and other applications, or sharing hyperlinks viaelectronic mail, instant messenger, and other applications. Thesemethods can be viewed as counter productive, anti-social and evenbothersome to the users that receive or attempt to share the content.Sharing of entire digital content such as music via electronic mail is adrain on resources and inefficient to the electronic mail servers, thenetwork, and the receiving users. Sharing of hyperlinks can lead tobroken links, complex URL (Universal Resource Locator) strings, andrestrictions on the type of content that can be shared (i.e. linked to).Compatibility problems are widespread and create frustration whensharing digital content of a specific media type.

What is needed are advanced techniques for controlling the trading ofdigital rights so that the buyers are assured of an authentic copy,“fair use” is preserved for the copy, and content owners are fairlycompensated. In addition, advanced techniques are employed to provide aneasy, friendly, efficient, and adaptable method for users to sharedigital content.

SUMMARY OF THE INVENTION

The invention relates, in one embodiment, to a title managementapparatus resident on a first computer including a memory for storing acontrol program and data, and a processor for executing the controlprogram and for managing the data. The apparatus includes user dataresident in the memory including a set of user security indicia. Theapparatus also includes a first title object resident in the memoryincluding a title structure, the title structure further comprising acontent element, a set of attributes, and a set of title object securityindicia. The apparatus further includes a set of stub objects coupled tothe title object, wherein the set of stub objects can further optimizethe title structure; an authorization structure configured toselectively redeem the content element based at least in part of theuser security indicia; and, a title management structure configured toassociate a user with the first title object based at least in part ofthe user data and the title attributes.

The invention relates, in another embodiment, to a method of managingtitle objects in a first computer having a memory. The method includesconfiguring user data resident in the memory including a set of usersecurity indicia. The method also includes configuring a first titleobject resident in the memory including a title structure, the titlestructure further comprising a content element, a set of attributes, anda set of title object security indicia. The method further includescoupling a set of stub objects to the title object, wherein the set ofstub objects can further optimize the title structure; configuring anauthorization structure configured to selectively redeem the contentelement based at least in part of the user security indicia; and,configuring a title management structure configured to associate a userwith the first title object based at least in part of the user data andthe title attributes.

Advantages of the invention include the ability to easily andefficiently manage and share titles over a network such as the Internet.

BRIEF DESCRIPTION OF THE DRAWINGS

The invention is described with reference to the figures, in which:

FIGS. 1A-3 depict a computer network and a title management apparatusaccording to an embodiment of the invention;

FIG. 4 depicts exemplary user data according to an embodiment of theinvention;

FIG. 5 depicts exemplary title data according to an embodiment of theinvention;

FIG. 6 depicts a logical structure of the invention according to anembodiment of the invention;

FIG. 7 depicts a logical structure of the invention as deployed in anecosystem according to an embodiment of the invention;

FIGS. 8A-E depict exemplary title management displays according to anembodiment of the invention;

FIGS. 9A-B depict exemplary title creation displays according to anembodiment of the invention;

FIGS. 10A-B depict exemplary administrative user control displaysaccording to an embodiment of the invention;

FIG. 11 is a flow chart showing steps for performing a title transferaccording to an embodiment of the invention;

FIG. 12A depicts a title payment system according to an embodiment ofthe invention;

FIG. 12B depicts a title payment system with a digital lockbox accordingto an embodiment of the invention;

FIG. 12C depicts a title payment system with a digital lockbox, a titlemanager, and a title publisher according to an embodiment of theinvention;

FIGS. 13A-E depict exemplary title data according to an embodiment ofthe invention;

FIGS. 14-15 depict exemplary title management displays according to anembodiment of the invention;

FIGS. 16-22B are flow charts showing steps for performing merchanttransactions according to an embodiment of the invention;

FIG. 23 depicts a simplified diagram in which an online contactmanagement system is optimized through the redemption of titles,according to an embodiment of the invention;

FIGS. 24A-D depicts exemplary title data according to an embodiment ofthe invention;

FIG. 25 depicts exemplary title management displays according to anembodiment of the invention;

FIGS. 26-28 are flow charts showing steps for facilitating contactmanagement, according to an embodiment of the invention;

FIG. 29 depicts a title object in which a set of stub elements areemployed to optimize titles, according to an embodiment of theinvention;

FIG. 30 depicts a simplified diagram in which components of titleelement are further displayed, according to an embodiment of theinvention;

FIGS. 31A-B depict simplified diagrams of components of the stubelement, according to an embodiment of the invention;

FIG. 32, depicts a descriptor component, according to an embodiment ofthe invention;

FIG. 33 depicts a content component, according to an embodiment of theinvention;

FIGS. 34A-B, depict a redeem component, according to an embodiment ofthe invention;

FIG. 35A depicts an issuer component of a title element, according to anembodiment of the invention;

FIG. 35B depicts an owner component of a title element, according to anembodiment of the invention;

FIGS. 36-37A depict simplified diagrams of title object lifecyclemanagement steps, according to an embodiment of the invention; and

FIG. 37B depicts a simplified diagram a digital lockbox, according to anembodiment of the invention.

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENT(S)

The invention is directed to the creation, ownership, exchange,management, reselling, marketing, bartering, and auctioning of titles.

In this context, a title is an object that may have a number of elementsand attributes including embedded digital content, ownership attributes,copy permissions, and others as described herein. A title can alsorepresent the rights to a single piece of digital content or a singleresource, or it can represent the rights to a multitude of digitalcontent and resources and in a variety of formats. The digital contentrights, such as the ability to exchange or copy, are determined by thecontent publisher. Furthermore, a title can also represent the rights toanother title or multitude of titles, which in turn express rights todigital content or resources.

Users can initiate a variety of exchanges with each other depending onthe type of title and the rules associated with that title. Theseexchanges can take the form of trades or transfers. In the case oftrades, offers can be reviewed, and then subsequently accepted,canceled, or a counter-offer can be presented. The counter-offer processcan continue until satisfaction, or until trade is canceled.

In order to help protect the integrity of the trade, a chained hashcryptographic technique is used to guarantee that only a single instanceof the title is in circulation at any one point in time. The titlemanagement and publisher structure may perform verification on thechained hash to ensure its integrity. The chained hash technique may beimplemented in such a way as to provide benefits typically associatedwith one-time password and digital cash systems. However thisimplementation may be modified to provide a high degree of integrityaround the use of titles within the ecosystem.

The chained hash technique can be combined with additional controls thatwork in conjunction with the security classification element to providevarying degrees of security for the title and the digital contentreferred to by the title. These additional controls may includecryptographic key-splitting techniques as well as multi-user andmulti-factor authentication. Security class is an element that residesin the title to convey the level of security appropriate for this title.Security class is set by the publisher based on the publisher'srequirements and rules. Security class can be used within the ecosystemto determine appropriate handling of the title. For example, a titlewith a high-security rating of 5 can force strong authentication of theuser as well as strong encryption of the digital content associated withthe title. As an example, a multi-user authentication requirement can beused for parental controls, whereby a guardian must also provideauthentication (and acceptance) on the purchase and use of a title wherea minor is involved.

The content rating system can be used by publishers to determineappropriate ratings for their content, and these ratings can be enforcedby title management and resolver apparatus to ensure guardian approval.Content rating is an element within the content element to convey arating regarding the suitability of the content. The rating system isdependent on the type of content and the regulatory factors involved(e.g. music, video, movie, etc.).

The exchange structure, specification, and rules provide the ability forthe title publisher and/or the title owner to determine the exchangecapabilities of subsequent owners of the title. For example, a titlepublisher could limit a title owner to only one trade, or even to denytrades but allow transfers. A title owner may transfer the title toanother person for a limited period of time and deny that person anyability to trade or transfer. This ability to set limitations mayoperate in conjunction with the rules structure.

A trust structure is also implemented to provide users with a simpleability to validate the digital content they receive. The truststructure may convey that the digital content was (if applicable)rightfully issued by the content publisher. Content publishers are notbound to use the trust structure for the titles they issue but in doingso can provide assurances to the buyer.

The invention is described with reference to specific apparatus andembodiments. Those skilled in the art may recognize that the descriptionis for illustration and to provide the best mode of practicing theinvention. For example, references are made to computer servers andclients, but in a peer-to-peer network, any computer is capable ofacting in either role. Likewise, reference is made to Internet protocolwhile any substantially comparable data transmission protocol can beused.

A. ARCHITECTURE

FIGS. 1-4 depict a computer network and a title management apparatusaccording to an embodiment of the invention. In one embodiment, FIG. 1Adepicts a title management apparatus 102 resident on a computer 104,comprising a title management structure 106, an authorization structure108, a resolver structure 109, a title publishing structure 110 and anumber of client computers 112-116 all coupled over a network (e.g.Internet), where each of the computers 112-116 may be owned by users ofthe system.

The users log on to title management apparatus 102 over the network andare authorized to perform certain functions and access certain databased on their ownerships and permissions, in order to manage, resell,market, barter or auction their respective titles. A digital contentfile stored within a content publishing structure 110 is redeemedthrough a pointer stored within is respective title. This pointerindicates the location of the digital content file. However, since thislocation could have changed since the title was created, a resolverstructure 109 substitutes the updated digital content file address, ifneeded.

Redemption can occur in various ways. For example, the digital contentfile could be downloaded in its entirety, or it could be streamed to oneof the client computers 112-116 and then viewed or listened locally. Ifthe digital content file is already stored locally, redemption couldallow access or playability. In the case of an online game or chatapplication, redemption of the digital content file could authorizeparticipation.

FIG. 1B depicts another embodiment in which the title managementapparatus 160 is resident on a client computer 162. A user can log on totitle management apparatus 160 directly without network access. As inFIG. 1A, the user is authorized to perform certain functions and accesscertain data based on their ownerships and permissions, in order tomanage their respective titles. In this embodiment, redemption of adigital content file only occurs within the memory of client computer162.

In another embodiment, FIG. 2A depicts a title management apparatus 202,wherein a title management structure 206 and an authorization structure208 are resident on computer 204, while the content publishing structure210 and a resolver structure 218 are resident on computer 207. Bothcomputer 204 and computer 207 are coupled over a network to computers212-216, which may be owned by users of the system. As in FIG. 1A, theusers log on to title management apparatus 202 over the network and areauthorized to perform certain functions and access certain data based ontheir ownerships and permissions, in order to manage, resell, market,barter or auction their respective titles.

In another embodiment, FIG. 2B depicts a title management apparatus 252,wherein a title management structure 256 and an authorization structure258 are resident on computer 254, while the resolver structure 268 isresident on computer 267, and the title publishing structure 260 isresident on computer 261. Computers 254, 267, 261 are coupled over anetwork to computers 212-216, which may be owned by users of the system.As in FIG. 1A, the users log on to title management apparatus 252 overthe network and are authorized to perform certain functions and accesscertain data based on their ownerships and permissions, in order tomanage, resell, market, barter or auction their respective titles.

FIG. 3 depicts the computer 310 for performing the invention accordingto an embodiment of the invention. The computer includes a processor 312coupled to a memory 314. The memory contains a data structure 316further comprising a plurality of software structures including controlprocedures 320, communication procedures 322, interaction procedures 324and data 326. The processor is further coupled to a user interface 330,an Internet communication interface 332 and a network interface 334.

FIG. 4 depicts exemplary user data 426 a according to an embodiment ofthe invention. The user data has a number of elements for each user 426a-A to 426 a-N, including personal information fields, businessinformation fields, wallet fields, privacy and security fields, andpersonalization fields. The personalization fields can be set by theuser for controlling the user environment, for example, the defaultcolor scheme for the graphical user interface, the type of interfaceskin, and the background image. Profile information maintained on theuser can include, for example, the financial information, emergencycontact, medical information, and work related information. The userdata and profiler are extensible to support the needs of the titletransaction system (and the ecosystem).

The title transaction system may provide the ability for users to managetheir profile information and to generate titles for accessing profileinformation. For example, this functionality can be used by someone toeasily create a business card title and distribute that title to theirassociates. The title in this case would be a tag that refers (that is,points) to their “business card” profile elements containing (as anexample) their name, title, business address, and business contactinformation. In an other example, some else could create an emergencyprofile card and distribute it to specific people so that in anemergency they would have access to certain personal information such asname, medical insurance number, allergies, health risks, and emergencycontacts. In this particular case, the title could be a ticket. Thetitle transaction system provides for close integration of profileinformation to provide significant value add for the user as theyparticipate in a community where communication, purchasing, trading,auctioning, and bartering are common place.

FIG. 5 depicts exemplary title data 526 b for a title object. The titledata has a number of fields for each title including header fields,titleowner fields, content parts fields, titlerules fields, and taggedfields, for example, XMLDSIG fields. The title object can be a type suchas a tag, token or ticket.

As depicted in FIG. 5, the title object has at least one stub objectassociated with it in order to verify the integrity and valid instanceof the title. In addition to identifiers, the stub object may containsecurity indicia, such as the indicia required by the chained hashtechnique, in order to validate the single instance and valid ownershipof the title. This stub object may change state on every redemption,exchange, and revocation of the title.

The title object may have more than one stub object associated with itin order to convey additional information, controls, content, or othervalue-add not explicitly given in the original title. The stub objectprovides extensibility to the title without requiring a completereplacement to the title object. As an example, a value-add resellersuch as a retail merchant may attach additional content or value to theoriginal title in order to promote their product or even to make theoriginal title more attractive for sale or trade. In another example, anadditional control stub maybe attached to the original title in order toensure appropriate handling of the title for use by minors, such asensuring that only an edited version of the content is viewed. The useof the stub object is flexible to ensure extensibility of the titleobject.

As depicted in FIG. 5, the stub object can contain a digital signatureelement in order to verify the integrity of the stub. Although the stubis viewed as an extension to the title, the stub can be digitally signedby any participant in the ecosystem. This permits a flexiblearchitecture where multiple participants can collaborate on adding valueto a title object.

The system employs a set of specification and rules for structuring,creating, managing, handling and using titles. The specification andrules, as well as the format of the title, are extensible to support theneeds of both the user and content publisher, as well as the needs ofintermediary systems within the ecosystem that handle (or interact) withtitles.

In the exemplary embodiment, a tag is a title object that can be copiedamong users, a token is a title object that cannot be copied like a tag,but can be transferred or exchanged between users, and a ticket is atitle object that is issued to a specific user, and hence cannot becopied or transferred among users.

B. LOGICAL STRUCTURE AND OPERATION

FIG. 6 depicts a logical structure 600 of the invention according to anembodiment of the invention. The primary parts of the logical structureare the processing portion 610, the data portion 650 and the dataabstraction portion 680. As shown, the processing portion 610communicates with the data portion 650 through the data abstractionportion 680. FIG. 6 represents the primary model for implementation anddeployment of the title transaction system, however the design isintended to be modular in that components can be eliminated or modifiedas required by the environment and requirements. The implementation ofthe title transaction system can take many shapes and forms. Forexample, this model maybe modified to permit operation of certain TTScomponents within a limited resource computing device such as a mobilephone. In another example, a fixed implementation may eliminate certainabstractions when knowingly operating in a static environment with alimited set of titles. In another embodiment, the TTS comprisessub-systems within other applications to support titles and transactions(i.e., media players such as Microsoft Media Player and Winamp,Microsoft Outlook, etc.)

A channel support structure 612 is responsible for communicating withusers and is associated with the communication procedures 622. Thechannel support 612 communicates over the network using a number ofpossible protocols including HTTP (hyper-text transfer protocol), SMTP(simple mail transfer protocol), SMS (short messaging service) andothers.

The title protocol may define a standard set of protocol bindings todescribe how title transactions are communicated across those protocols.However the title protocol specification may define extensions so thatthe title protocol can be bound to other underlying protocols asrequired within the ecosystem. When an inbound message is received bythe channel support 612, the message is passed along to a number ofother structures that decode, transform and interact with the message.For example a transform structure 614 performs a transform on theinbound data request to conform it to a normalized application interfacefor a core title transaction application. The use of the transform layerat this point provides standardized parsing of the transaction as itproceeds through the pipeline to the core title transaction application.A tracker 616 acts as a transaction filter to maintain a log of all theinbound messages and requests. A rule structure 618 then applies anumber of possible rules to the message. The rule structure obtains itsrule sets from several sources including the title itself (as defined inthe title format), data storage through the data abstraction portion,and extensions that can support the retrieval of rules through othersources such as via the network. The rules include characteristics foreach title, for example, whether it can be refunded, exchanged, playedviewed, etc. Often, the functions that can be performed on a given titleare related to the title type. For example, in the exemplary embodiment,titles of type tag can be freely distributed to all users, titles oftype ticket are tied to a specific user and cannot be exchanged, andtitles of type token can be exchanged with other users. When a title oftype token is exchanged with another user, the user can no longer redeemthat title, and the system may disable any offline content associatedwith the title.

For instance, the content element within a title can contain anencrypted password that is not known to the user. A program for viewingor playing the offline content, such as Windows Media Player, would readthe title through an application program interface, check the rule sets,and then execute content, such as an MP3 file, using the encryptedpassword. Once a user exchanges the title with another user, the rulesets would be modified to reflect that that the user no longer hasrights to the content, and the content itself could not be played orviewed.

The rules associated to the title are developed and applied by thecontent publisher and by the user (or someone acting on behalf of theuser). The title management and title publisher modules may provide anapplication and interface to easily develop and apply rules to thetitles. For example, a content publisher may apply usage rulesapplicable to the title and the digital content and/or resource itprovides evidence of rights to. In turn, a user may apply default ruleswithin the title management module to assist in controlling andprotecting their actions related to certain titles (for example, toprevent from accidentally trading a valuable title). In another example,a parent may establish restrictions on the type of content their childmay access and use in their title management module.

Specialized rules, called triggers, may also be used. Triggers are rulesthat invoke actions that are external to the title management apparatus.For instance, a parent can be notified by email that a child wishes toredeem a digital content file for which there is some age restriction.

Specialized rules, called timers, may also be used. Timers are rulesthat invoke actions based on a specific time or based on a spent amountof time. For example a title may only be good for twenty four hours, oran exchange may only be valid for one week. Timers maybe combined withtriggers in rule processing.

The core title transaction application 620 (core TTS) is the applicationthat verifies the ownership of the titles by the users and thatauthenticates the titles and selectively permits the titles to betransferred if such rights are allowed. Among the modules that may becontained within the core TTS application are the following:

(a) A title manager module performs management functions on titles suchas organizing, deleting, adding, transferring, trading, copying, backingup, viewing, and redeeming. In addition to basic title functionality,the title manager module can provide sophisticated and value-addfeatures to allow the user a better online experience such as chat wherereal-time redemption and trading are available during the chat session.Furthermore, features such as sorting categorizing, searching and notifycan be made available to the user. As an example, a sophisticated searchcapability can be implemented whereby the user can search the networkfor other users, titles available for bid, transaction makers, or even asecure and trusted third party lockbox with which to conduct a trade.This sophisticated discovery process may be an integral part of the TTSecosystem. The title manager module is the primary application componentthat the user may interact with on a regular basis. The title managermodule maybe designed to be a single-user or multi-user applicationdepending on the specific use of the module. A single-user version canbe used in a peer-to-peer network, whereas a multi-user version can bedeployed with consumer aggregators. The title manager implements alockbox feature that is responsible for securely executing tradesbetween two parties. The lockbox provides storage for titles beingtraded and provides a secure environment where users can verify trades,view samples, and accept a trade. Upon acceptance of the trade by allparties involved, the lockbox may execute the trade and provide eachparty with an updated title and stub object-pair that evidences theirnew rights. The lockbox feature of the title manager can be implementedas a standalone service so that a trusted third party can provide secureexecution of trades.

(b) A transaction tracker module performs the basic task of tracking allinbound and outbound transactions whether successful or not. The trackermodule is configurable by the user to determine the level of tracking tobe performed based on the user's requirements. The tracker may be usedto provide a record of all transactions performed by the user such astrades and transfers. The tracker may be used by all core TTS componentsfor creating a record of all transactions (for example, those performedby the resolver and content publisher). The tracker may recordtransactions in a data repository using the data abstraction portion.

(c) A rules builder module performs the task of building rules to beassociated with the titles and processing of the titles. The rulesbuilder module may provide an easy to use interface for the user tocreate and build rules that can be embedded within a title or usedduring the processing of a title. Rules that are not embedded within atitle may be stored in a data repository using the data abstractionportion. The rules builder may provide an extension capability to applyrules developed external to the rules builder ensuring the adaptabilityof title processing.

(d) A title resolver module that the important task of resolving alltitles presented. This process involves all applicable tasks to thetitle presented including verifying integrity of the title, validatingthe title, ensuring ownership of the title, decoding and decrypting thenecessary title elements and retrieving the content or resourcerequested. The title resolver may be responsible for executing andacting upon rules and triggers that are applicable to the titlepresented. An additional function of the resolver would be to refreshold titles. For example, if information contained within a title becameoutdated, this information could be automatically refreshed either byreplacing the title completely or by adding a new stub object thatupdates the information. In addition, the title resolver may invokeadditional processes as required such as the CODEC module.

(e) A state server module that maintains and verifies state associatedwith the use of titles throughout the ecosystem. The state server maywork in conjunction with the title resolver in order to verify thevalidity of the title and generate new stub objects associated with thetitle on every redemption and exchange. The state server may be ahigh-capacity, high-availability, and high-performance system that canbe widely distributed and chained in order to perform fast validationfor titles in use. The state server may perform functions and algorithmsassociated with the chained hash, one-time password, and key-splittingtechniques.

(f) A title publisher module performs the tasks associated withpublishing (that is, creating new titles). The title publisher providesan easy to use interface for a user to identify, organize, and group newcontent (or resources), and then generate a new title or title templatethat points to that digital content or those resources. Titles can begenerated on the fly and immediately by the title publisher which wouldthen invoke the title manager to store the newly generated titles.Alternatively, the title publisher can generate new title templates thatwould describe the contents of the title but would not immediatelygenerate a title. Title templates could be used in a variety of ways bythe content publisher, for example by the content publisher's onlineshopping site to automatically generate titles when a buyer purchasesnew content. The content publisher stores work in progress (such asgrouped publishing efforts) in a data repository using the dataabstraction portion. Title publishers may provide sophisticatedfunctionality to enhance the online experience for content publisherssuch as organizing content and title publishing into projects, sharingprojects, and allowing community projects. Workgroup and workflowcapabilities can be built into the title publisher as well as creatingsingle-user and multi-user versions. As an example, a multi-user versioncan be implemented by a consumer aggregator or service provider in orderto perform title publishing activities on behalf of a user community.Enhanced features may provide additional value to people using the titlepublisher such as verifying pointers to content files and resources,automatically obtaining icons, and even pushing titles and content outto servers.

(g) A rating system module performs rating tasks on transaction recordsto support billing requirements. The rating system may be flexible tosupport the variety of billing options required within the ecosystem.The rating system may act on transaction data but may maintainseparation between the data sets to ensure integrity of the transactionlog.

(h) A CODEC module performs coding and decoding functions on the contentretrieved by the title resolver. The primary purpose of this module isto encapsulate content in a secure package as determined by the securityrequired of the title and established by the rules. For example, thismodule can perform digital watermarking of music and image content, andit can also be used to encrypt the content in a traditional digitalrights management package. Additionally, the CODEC can be used by theresolver to decode contents within the title before processing by theresolver. The CODEC may provide mechanisms to support these functions asrequired within the ecosystem.

(i) A billing interface module provides an interface to the billingsystem operated by the user or entity running any of the core TTScomponents or modules.

(j) A transaction viewer module provides an interface for the user toview transactions recorded by the transaction tracker.

(k) A content interface module performs the tasks associated withretrieving the content. This module may generally be invoked by theresolver. The content interface module may be extensible to support avariety of content and resource systems in use by content publishers.

(l) A synch & replication module performs synchronization andreplication across components and modules within the TTS system. This isrequired for a number of functions including (but not limited to)synchronization and replication of transaction log entries,synchronization of titles across title management modules in a highlydistributed environment, and replication of title databases to supportredundancy and high-availability.

(m) A crypto interface module performs symmetric and asymmetriccryptographic functions as required within the TTS ecosystem.

(n) An authentication and authorization module performs the typeauthentication and authorization required by (and specified by) thetitle or other ecosystem configurations. Authentication may not berequired in certain instances, or can be as simple as providing anidentifier for “free” use. Strong authentication may be required forother instances and may be enforced by the ecosystem components. Strongauthentication can take the form of two-factor such as Smartcard andPIN, or via mobile phone using a SIM card and a PIN, or via any othersupported method such as a SecurID token card. In basic form,authentication may be a username and password. Authorization may providefine-grained access control to core TTS applications as well as to usetitles within the ecosystem. Authorization may be based on rulesestablished within titles and configured as part of the implementationof core TTS applications.

(o) A payment interface module provides an interface to a payment systemoperated by a user or entity of the core TTS components and modules.This permits real-time and batch processing of payment requests asconfigured by the user or entity.

(p) A cache management module performs basic caching functions of thecontent or resources retrieved by the title system. This function mayprovide performance benefits using cached content versus retrieving newcontent on every request for the same content.

(q) A user registration module performs registration of new users intothe core TTS components and modules. This may be used to establish newusers in a single user environment such as peer-to-peer, as well asestablish new users in a multi-user environment such as that hosted by aconsumer aggregator. A consumer aggregator is an entity that providesservices to a consumer base (i.e., ISP, mobile operator, etc.).

(r) A transaction maker module performs transaction maker functions suchas operating an exchange for the sale of titles, perform licensing ofcontent represented by the titles, maintaining a book of trades, closingand clearing trade transactions, and performing additional value add asdetermined by the market.

(s) An intelligent data retrieval and query module integrated with thedata abstraction portion in order to perform intelligent searches andqueries on a variety of data in a variety of disparate locations. TheIDRQ module can combine, map, and match data before presenting it torequesting applications through the data abstraction portion.Persistence and caching can be developed into the IDRQ module to enhanceperformance on multiple and frequent queries/searches.

(t) A web crawler module performs searches on the web to catalog contentand provide a mechanism to automatically generate titles that representthe content that has been discovered. The web crawler module can be usedstatically or dynamically executed based on configuration of theimplementation and/or on inbound requests. The web crawler module couldinterface with the intelligent data retrieval and query system attachedto the data abstraction layer for intelligent searches and retrieval ofweb content.

(u) A discovery mechanism that can be used by all appropriate modulesfor discovering TTS resources that may be available on the network. Thediscovery mechanism may allow TTS modules to participate in apeer-to-peer environment as well as collaborate on activities. Thediscovery process can ensure that trust third parties are available forconducting secure transactions and well as simplifying the user andcontent publisher experience for clearing titles through the ecosystem.

In the outbound stream from the core TTS, the rules structure 618 thenperforms certain functions on the outbound information according torules stored in the data 650 and/or embedded in the title. The tracker616 checks to ensure that the outbound information matches the inboundrequests so that no inbound messages are dropped or ignored and thatoutbound message are responding to legitimate inbound messages. Thetracker may log transactions in accordance with the configuration. Thetransform 614 converts the outbound information from a normalized formatinto a format that conforms to a user profile or preference, as well asbased on incoming requests for particular transforms. For example, thedata can be transformed into WML for display on a WAP enabled phone, orinto HTML for display on a web browser. Certain transforms can beexecuted based on rules established within the system. The profile orpreference data as well as the transform templates are retrieved fromthe data portion 650 in order to perform the transform. Finally, thechannel support 612 communicates with the user of the network in anative protocol format.

In another embodiment, FIG. 7 depicts a logical structure of theinvention as deployed in an ecosystem according to an embodiment of theinvention. The ecosystem 702 is comprised of a number of entities, eachproviding a service of benefit to the overall system, and each connectedto the other using some type of network protocol.

The title manager 712, content publisher 714, transaction maker 718,content creator 716, and hosting provider 720 are coupled to each otherusing a network protocol 724 such as TCPIP over the Internet. The clientdevice 704 can be coupled to title manager 712, content publisher 714and transaction maker 718 using any one of a number of networkprotocols. Among these are HTTP 706, E-Mail (SMTP) 708, and SMS 710.

Initially, the content creator 716 creates a digital content file, suchas an MP3 song, as well as a title associated with the digital contentfile. The creating user interacts with a display as shown in FIG. 8A anddescribed in detail below. The digital content file is transmittedacross the network protocol 724 to hosting provider 720, where it isstored until a content publisher 714 desires to make it available tousers with a client device 704. The content creator also transmits thetitle to the title manager 712 using network protocol 724.

Users desiring the digital content file may access the transaction maker718 using the client device 704. Transaction maker 718 functions as amarketplace where digital content buyers and sellers can transact witheach other in a secure environment. When a user agrees to buy thedigital content file from a seller, in this case the content publisher714, the transaction maker 718 communicates this to the title manager712, which in turn, modifies the title of the digital content file withthe new rights just purchased by the user. The user can now redeem thedigital content file from the content publisher 714 and download it tothe client device 704.

If the user desires to transfer the title to a new user, and the title'ssecurity indicia allows it, the user can become a digital content sellerand post an offer to transfer the title on transaction maker 718. Asbefore, when a new user agrees to buy the digital content file from theuser, the transaction maker 718 communicates this to the title manager712, which in turn, modifies the title of the digital content file withthe new rights just purchased by the new user. The buyer can now redeemthe digital content file from the content publisher 714 and download itto the client device 704. The seller can no longer access the digitalcontent file on the content publisher 714.

FIG. 8A depicts an exemplary title management screen display 800according to an embodiment of the invention. This display is used by auser to perform certain functions and access certain data based on theirownerships and permissions, in order to manage, resell, market, barteror auction their respective titles. The display is divided into twosections, a title folder pane 806 and a title content pane 802. Thetitle folder pane 806 can further organize the titles into folders basedon different attributes, such as the type of digital content, such ascontacts, games, movies, music, playlists, and unsorted. Furthermore,deleted titles are placed a deleted folder. The title content pane 802displays more detailed information about the digital content. In thisexample, the user selected title abc@company.com 808 in the title folderpane 806, and is displayed the corresponding business card 804 for acontact “Jim Smith.”

FIG. 8B depicts an exemplary title management screen display 810according to another embodiment of the invention. As in FIG. 8A, thedisplay is divided into two sections, a title folder pane 806 and atitle content pane 802. Each title entry 812 in the title content pane802 may have a play user selectable button 813, a trade user selectablebutton 814, and a delete user selectable button 815.

In this example, the user selected mySongArtist#3 814 in the titlefolder pane 806, and is displayed the owned titles to mySongArtist#3songs 812. From this display, the user has the option to play 813 thesong on the user's client computer, trade 814 the title to the song toanother user, or delete 815 the title altogether.

If the user selects one of mySongArtist#3 songs 812, a more detailedtitle content pane 842 appears, as shown in FIG. 8C. In this pane, adescription of the song is displayed, along with the music type,category, and rating. A picture, such as an album cover, can be alsodisplayed. As is FIG. 8B, the user has the option to play 813 the songon the user's client computer, trade 814 the title to the song toanother user, or delete 815 the title altogether.

For example, if the user chooses to trade 814 mySong#3, a tradePreparation pane 862 appears, as shown in FIG. 8D. Aside from theinformation that was previously displayed in the title content pane 842of FIG. 8C, additional information is displayed, such as a valid fromdate field 871, a quantity field 872, a value field 873, and an exchangelimit field 874. The user can also view a sample 875 of mySong#3.

The user must select whether to trade or transfer 864 the title ofmySong#3 with another user. Additionally, the user may be asked if theywould like to list it on a barter site (“list on barter site”) or postit to a transaction maker site (“post to transaction maker”). The usercan enter description of the mySong#3 in the description field 866, aswell as a note in the Personal Note field 870 to the user with whom thetrade is being transacted. In the trade with whom field 868, the userenters the e-mail or mobile phone number of the user with whom they wishto trade. Once this information is substantially complete, the userselects the user selectable button trade title 872 to proceed, or theuser selectable button cancel 874 to cancel the transaction.

The e-mail and mobile phone numbers are used to provide examples ofidentifying trading parties. The title transaction system has beendesigned with a flexible and extensible title format to accept andsupport a variety of naming schemes, including but not limited to domainname, phone numbers, X.500 naming, and LDAP.

FIG. 8E depicts an exemplary title trades screen display 880 accordingto another embodiment of the invention. This display shows the currentstatus of a user's title transactions. The display is divided into fivesections, a title folder pane 890 a title status summary pane 882, atitle bid pane 888, and a title offered pane 884, and an action panewith a series of user selectable buttons: counteroffer 891, cancel 892,and trade 846. In this example, the user selected mySong#3 883 wasoffered to trader#2, who has been notified. Once trader#2 makes an offerfor trade, the user can counteroffer 891, cancel 892, or trade 846 andcomplete the transaction.

FIG. 9A depicts exemplary title creation screen display 900 according toan embodiment of the invention. The number of digital content files thata title can contain is substantial. Furthermore, the addressing orreferencing scheme used by the content element is flexible to supportnumerous simple and complex structures such as URL's, objectidentifiers, domain names, alternate pointers, complex multi-partpointers, and even embedded content. With embedded content, the titleactually contains the content and can optionally support a variety ofencoding and encryption schemes

The display is divided into two sections, a new project pane 902, and aproject list pane 908. A project is a set of digital content files thatshare the same title object. If the user opens myprojectName#3, forexample, a project detail display 920 appears, as in FIG. 9B.

FIG. 9B depicts an exemplary project detail display 920 according toanother embodiment of the invention. The display is divided into foursections. The first is an action pane 955 with a series of userselectable buttons: delete 956, publish 958, create titles 960, and Back962. The second is an add file pane 953 with a user selectable buttonadd files 954, and a field to enter the directory in which the files arestored 952. The third is a project list pane 908. And the fourth is aproject detail pane 921.

Digital content files can be quickly added to a project by entering thename of the directory in which they are located into user input field952, and selecting the add files user selectable button 954.Furthermore, information contained in the title is shown and can bemodified through fields the project detail pane 921 such as: name field922, creator field 924, type field 928, category field 930, descriptionfield 932, location field 934, quantity field 936, value field 938, mimetype field 940, rating field 942, sample at field 944, and icon field946. When the users wish to save the information in the title, the userselectable button update 948 is selected.

FIG. 10A depicts an exemplary administrative screen display 1000according to another embodiment of the invention. This display is usedto store administrative information about each user, preferences tocustomize the user interface, and custom rules that the user wantsapplied. The display is divided into 5 tabs: personal 1002, business1004, financial 1006, emergency 1008, and preferences 1010. Thepreferences 1010 tab further contains the following fields: backgroundimage 1012, search page 1014, favorite music site 1016, favorite moviesite 1018, and favorite school site 1020. When the users wish to savethe information in the profile, the submit changes 1022 button isselected.

The business tab 1032, as shown FIG. 10B, contains the following fields:company came 1034, web site 1036, work phone # 1038, work email 1040,job title 1042, and work address 1044-1046. As in FIG. 10A, when theusers wish to save the information in the profile, the submit changes1022 button is selected.

FIG. 11 is a flow chart showing steps for performing a title transferaccording to an embodiment of the invention. Initially, the user logs onthe title manager computer 1152 and uploads a new title and associatedcontent record 1154. The user then creates attributes for each record1156. The user then posts an offer to transfer the title on transactionmaker 1158. A buyer who desires the digital content file requests thetitle from the seller 1160, whereby both the buyer and seller areauthenticated. The title integrity is verified and a new chained hash isissued 1162, authorizing the transaction. When this is accomplished, thetransaction is complete 1164.

C. METHODS OF FACILITATING MERCHANT TRANSACTIONS

FIG. 12A depicts an exemplary diagram according to one embodiment of theinvention, in which an online payment system is enabled through theexchange of titles. This embodiment addresses the importance of onlinepayment systems for Internet merchants, since direct human interactionwith customers is both costly and often inconvenient.

Current online payment systems commonly require bank cards, such as Visaor Master Card. In order to complete a purchase, customers must enterthe bank card account information, along with personal contactinformation, into an online form at the merchant Internet site. Often,the information is stored by the merchant to simplify future customerpurchases. For instance, instead of having to re-enter the information,the customer can just authenticate with a login and password, andcomplete the purchase.

Customer fears about data security and confidentiality, however, haveinhibited ecommerce growth. And although security systems have greatlyimproved, criminal sophistication has also increased. Customers are notonly inconvenienced with having to enter and re-enter accountinformation at every merchants site, they are also concerned withpropagation of their account information, protection of their privacy ateach of the merchants site, and tracking of their habits and activitiesonline.

Because of the distributed and anonymous nature of the Internet, onlinemerchants are prone to both fraudulent bank card transactions andmalicious hacking attacks. These same merchants, however, cannot remainin business if their attempts to increase security result in unintendedcustomer frustration. Modern payment systems must both enhance thecustomer buying experience and be secure. A modern payment system mustalso support anonymous payment methods similar to the physical cashschemes that are currently in use throughout the world.

FIG. 12A is an exemplary diagram of a title payment system. The systemin FIG. 12A comprises a consumer's device 1202 connected to an online,hosted digital commerce engine (DCE) 1204. The DCE is a hosted servicethat operates a title publisher 1206 and a title manager 1208. The DCEis typically hosted by a network provider such as an internet serviceprovider, application service provider, and/or mobile operator. Thetitle manager 1208 provides wallet functionality in order to handle thevarious payment processes and payment titles. The system in FIG. 12Aalso comprises a merchant site 1210, third party digital lockbox 1212,title enabled payment provider 1214, and a traditional payment provider1216. In this example, all communications occur over a TCP/IP network1201 but can be implemented using any number of protocols andcommunication implementations.

Consumer's device 1202 presents the user interface of the online titlemanager and wallet through which titles and digital content files aremanaged, transacted, and delivered. The device can be almost any type ofcomputing device that can communicate with the DCE, including desktopcomputers, laptops, PDA's, and mobile phones. The title manager 1208located in the DCE provides title management services to the consumersuch as adding, viewing, and trading titles. Additionally, the titlemanager 1208 provides wallet functionality for viewing accounts,currencies, and receipts as well as handling payment processing onbehalf of the consumer. Optionally, the functionality offered by boththe consumer's device and the DCE can be packaged in a number of waysincluding a completely integrated application to be run on a consumer'sdevice such as a desktop computer.

The merchant site 1210 is an online merchant system that provides bothweb-based and e-commerce functionality such as catalog, productinformation, product configurators, shopping pages, shopping cart, andpayment services. While only one merchant site is shown in the diagram,the invention can support any number of merchant sites. The merchantsite 1210 is further comprised of title-enabled components as shown inFIG. 12B. As shown in FIG. 12B, the merchant site can include a titlemanager 1210 a, title publisher 1210 b, digital lockbox 1210 c, andtitle merchant plugin 1210 d. All components are optionally operated bythe merchant but are generally available to merchants that are titleenabled. The title manager 1210 a provides the merchant with managementfunctions for titles that they own or potentially for customers. Thetitle publisher 1210 b allows the merchant to publish titles such as thetitles that may be given to customers that reference customer's rightsto digital content file s. The digital lockbox 1210 c is an examplewhere the merchant hosts the lockbox for trading purposes instead of athird party service. The title merchant plugin 1210 d provides paymentsupport services for the merchant including communication with digitallockboxes, title verification, and an interface with payment providers.While only one component of each type is shown, the invention cansupport any number of components to be hosted by the merchant.

The third party digital lockbox 1212 in FIG. 12A is an application thatprovides a temporary and secure safe harbor for all transaction titlesuntil title rights are established. While only one digital lockbox isshown, the invention can support any number of digital lockboxes. It isgenerally hosted somewhere in the network by the merchant, or a trustedthird party escrow service. For instance, a title may be released to theconsumer from lockbox 1212 once the purchase is completed. As shown inFIG. 12B the merchant site can also host a digital lockbox 1210 c toprovide a mechanism for supporting the payment process, that issupporting exchange transactions, in lieu of a third party service.

The title enabled payment provider 1214 is an online payment providerservice that is title enabled, in that they can support title basedtransactions. While only one title enabled payment provider is shown,the invention can support any number of title enabled payment providers.In addition to supporting titles, a title enabled payment provider 1214would provide services typical of a payment provider such as paymentprocessing, gateways to payment networks, and merchant accounts. Asshown in FIG. 12C a title enabled payment provider 1214 can operatetitle-enabled components such as title manager 1214 a, title publisher1214 b and digital lockbox 1214 c. These components would provide thesame services to the payment provider as similar components provided tothe merchant site 1210.

Each of the system elements shown in FIG. 12A, FIG. 12B, and FIG. 12Care coupled to the other using a network protocol 1201, such as TCP/IPover the Internet. Furthermore, consumers can access online titlemanager 1210 a functions directly within merchant sites 1210 if they arepermitted. For instance, payment options shown at the merchant sitereflect those available in the online title manager 1208, but otheroptions can be added.

As previously described, a title is an object that may have a number ofelements and attributes including embedded digital content, ownershipattributes, and copy permissions. In this example, a consumer wishes tobuy a product or service from a merchant using a title transaction. Apurchasing transaction generally comprises two or more separate titles:a product title or titles being offered by the merchant; and a paymentslip title or payment titles being offered by the consumer. The producttitle or titles give the title owner specific rights to the product, forinstance, the ability to play a song. The payment slip title is afinancial instrument that authorizes a payment provider to pay themerchant for any product titles purchased. Once the transaction iscomplete, the consumer would be in possession of the product title ortitles and the merchant would be in possession of the payment slip titleor payment titles.

For instance, a customer would use a web browser on customer's device1202 to access a merchant site 1210 through online title manager 1204.When the merchant site determines that the transaction is title-enabled,it presents the product title choices and displays the consumer's titlepayment options. Once items are selected for purchase, the merchant siteplaces the product titles in a digital lockbox 1212, generates apre-filled sales order title comprising transaction details including atransaction number, product title information, purchase detail, andinformation on the digital lockbox 1212. The sales order title functionsas an electronic invoice or promise of payment for the merchant 1210.

The sales order is transmitted back to title manager 1204 and stored forthe consumer to view, select payment type, and approve using theconsumer device 1202. Once approved by the consumer, the title publisher1206 may generate a payment slip title using the sales order title as aguide. The payment slip title is transmitted to the digital lockbox 1212and the merchant 1210 is notified. The merchant 1210 verifies thepayment slip title in the digital lockbox 1212 and completes thetransaction by releasing the product titles to the customer. A receipttitle can also be generated and included in the transaction if requestedor required. The merchant 1212 then captures payment from the customerby forwarding the completed payment slip title to the title paymentprovider 1214 for payment. Alternatively, the merchant 1210 can use astandard collection process such as that used for credit cardprocessing, and deal directly with a traditional payment provider 1216.

FIGS. 13A, 13B, and 13C depict exemplary payment transaction datastructures according to an embodiment of the invention. Each datastructure is maintained within the online title manager 1204, 1210 a,and 1214 a, previously displayed in FIGS. 12A, 12B, and 12C.

FIG. 13A displays an account title 1301. In this example, an accounttitle represents a bank card or a debit card. Each account title 1301can further contain sub-elements such as access information and otheraccount details. The structure of an account title 1301 is that basicaccount information is contained in a standard title block 1302 anddetailed account information is contained in a content stub 1303.Containing the detail in a content stub 1303 provides additional controland flexibility of what information is displayed, transmitted, andshared through a transaction. An account title is generally a ticketsince it is issued to a particular person and cannot be traded. This isindicated in 1302 and as is standard with tickets an authenticator stub1304 is included.

FIG. 13B displays a currency title 1310. Unlike a bank card, a currencyfunctions as a pre-paid card or traveler's check that can be redeemed atthe issuing title currency merchant. Currency is purchased in the issueddenominations of that legal tender. For instance, in the case of U.S.Dollars, the denominations would be $0.01, $0.05, $0.25, $1.00, etc.Each currency title 1310 represents a specific currency and a specificdenomination such as $1.00US. The currency title 1310 containsadditional information regarding the currency such as issuer, type, andrules associated with the currency this is indicated in 1311. Unlikeaccount titles, currency titles are generally tokens since ownership isdependent on possession and currency can be traded or transferred. Aswith all tokens an authenticator stub 1313 is included. In anotherexample of a currency title 1310, the denomination may only be valid attime of issuance, and the title can be divisible, that is the currencytitle can be used for transactions requiring smaller denominations suchas micro transactions. In this case, the currency title can contain aprocessing stub 1312 to hold processing indicia used during microtransactions.

FIG. 13C depicts an exemplary payment slip title according to anembodiment of the invention. A payment slip title 1320 is shown and isformatted similar to previous titles. The difference with a payment sliptitle is the content that it refers to and contains. The payment sliptitle 1320 has a payment detail section 1321 that contains specificinformation relating to the payment type used by the consumer. Aspreviously described, the payment slip title is generated by the titlepublisher 1206 as shown in FIG. 12A, using the sales order title as aguide. The payment detail 1321 section of the title is actual titlecontent and contains specific information relating to payment for theproduct. The information contained in payment detail 1321 may varydepending on the payment mechanism selected by the consumer such asaccount, blinded account, secure account, etc. Generally, theinformation may contain payment detail (such as amount), account name,type number, as well a basic order information including transactionnumber, merchant, date, description of product and any rules associatedwith payment. Some or all of this information maybe encoded such thatonly a title enabled payment provider 1214 or traditional paymentprovider 1216 can decode.

As described previously, a sales order title is created by the titlepublisher 1210 b operated by the merchant site 1210 as shown in FIG.12B. The sales order title is used as an invoice and sent to theconsumer's title manager 1208 shown in FIG. 12A. The consumer's titlepublisher 1206 may create a payment slip title 1320 using sales ordertitle as a guide. The sales order title is similar to previous titlesbut may instead contain sales order information within the contentelement. FIG. 13D depicts an exemplary sales order detail 1330 sectionthat would be included within a title similar to the currency detail1311 being included in 1310 and payment detail 1321 being included in1320. The sales order detail 1330 contains merchant detail 1331, ordersummary information 1332, order detail 1333, payment detail 1334, tradedetail 1335, and consumer payment logic 1336. Order summary 1332provides summary information on the order including order number, totalprice, and taxes. Order detail 1333 provides line item detail for eachproduct offered for sale, including unit and extended pricing. Paymentdetail 1334 provides detail definitions for the terms and conditions aswell as the accepted payment types such as Visa, Mastercard, bank card,and cash. Trade detail 1335 provides information regarding the trade(product titles for payment titles) such as the location of the digitallockbox 1212. Consumer payment logic 1336 defines logic statements thatcan control how a payment slip is generated. These are basicallyinstructions to the title publisher 1206 for handling specific paymentmechanisms.

FIG. 13E depicts an exemplary title data table according to anembodiment of the invention. The title data table 1340 may be used by atitle manager 1208, 1210 a, 1214 a to store all titles used in paymenttransactions. As shown in FIG. 13E, the table can contain any number oftitles including currency titles 1342, account titles 1344, sales ordertitles 1346, and payment slip titles 1348.

FIG. 14 depicts an exemplary online title manager that is displayed in abrowser on consumer's device 1202, as described in FIG. 12. The displayis divided into two sections, a title folder pane 1402 and a titlecontent pane 1406. The tile folder pane 1402 further organizes thetitles into folders based on type 1404, although only my wallet titlesare displayed. Examples include accounts, currency, and receipts. Theaccounts folder contains titles of bank cards, debit cards, and directdebit transactions. The currency folder contains titles of pre-paidcurrencies, as well as other pre-paid accounts that can be used forpayment, such as gaming tokens and cell phone minutes. The receiptsfolder contains receipts for the customer's purchases, organized bytype, such as retail and account.

The title content pane 1406 presents summarized information 1408 foraccount, currency, or receipt titles. Title content pane 1406 alsoallows the consumer to modify authorized entries within the titles. Forexample, the user has selected the dollars currency title 1412. Thisdisplays a summary of the currency amounts contained with the title, aswell as allows the user to top up the account 1410 with additionalcurrency.

FIG. 15 depicts an exemplary merchant site 1502 that would be displayedin a browser on the consumer's device 1202, as described in FIG. 12. Inaddition to common merchant site elements, such as the shopping cartitem description 1504, the consumer's title manager 1508 is displayed ina sub-window within or on top of the browser like a wallet application.In the title manager 1508, the device presents the consumer withavailable payment structures 1510, as well as a payment slip description1512 when it is received from the merchant site 1210. Using the titlemanager window (i.e. the wallet application), the consumer can select apayment structure and make payment for the products presented in 1512.

FIG. 16 is an exemplary flow chart describing the steps in which theconsumer chooses an identified account payment structure for the paymentslip title. In this example, an identified (or named) account could be aVisa credit card account where the owner of the account is named on thecard as well as the card number. This differs from a blinded accountwhere the owner and account information is not divulged. This example isintended to show a typical credit card transaction where the titletransaction system is setup to handle traditional payment mechanismsusing current, traditional payment provider networks and technologies.In step 1602, the consumer purchases a digital content file title from amerchant, such as MerchantStore.com. In step 1604, the merchant placesthe titles expressing rights to the digital content files and ifrequested a digital receipt into the digital lockbox 1212. In step 1606the merchant generates a sales order title and transmits it to theconsumer's title manager 1208. In step 1608, the consumer then selectsthe desired form of payment and if a receipt is required from themerchant. In this example, the consumer would select a Visa credit cardaccount. In step 1610, the consumer's title publisher 1206 creates apayment slip title and in step 1612 the title manager 1208 places itinto the digital lockbox 1212 which then notifies the merchant. In step1614, the merchant's title merchant plugin 1210 d retrieves the contentsof the lockbox. In step 1616, the title merchant plugin 1210 d verifiesthe payment slip title and if valid (step 1618) may verify theidentified account and funds in step 1620. If the account is valid andsufficient funds are available (step 1622), the title merchant pluginmay capture funds from the payment provider 1216 (step 1624). In step1626 the title merchant plugin sends a complete trade request to thedigital lockbox. In step 1628 the digital lockbox completes the trade byclaiming ownership over the titles in the lockbox, swapping the titles,and distributing them to the appropriate party. In this example, theconsumer may receive the digital content file titles, and the merchantmay receive the payment slip title.

FIG. 17 is an exemplary flow chart describing the steps in which theconsumer chooses a blinded payment structure for the payment slip title.In this example, a blinded account is used as the payment mechanism inorder to protect the account holders name and the account number. Theactual account in this case can be a credit card, bank card or otheraccount or even some other payment mechanism. In step 1702, the consumerpurchases a digital content file title from a merchant, such asMerchantStore.com. In step 1704, the merchant places the titlesexpressing rights to the digital content files and if requested adigital receipt into the digital lockbox 1212. In step 1706 the merchantgenerates a sales order title and transmits it to the consumer's titlemanager 1208. In step 1708, the consumer then selects the desired formof payment and if a receipt is required from the merchant. In thisexample, the consumer would select a blinded Visa credit card account.In step 1710, the consumer's title publisher 1206 creates a payment sliptitle using encoded account information (rather than clear text accountinformation) and in step 1712 the title manager 1208 places it into thedigital lockbox 1212 which then notifies the merchant. In step 1714, themerchant's title merchant plugin 1210 d retrieves the contents of thelockbox. In step 1716, the title merchant plugin 1210 d verifies thepayment slip title and if valid (step 1718) sends the encoded accountinformation to a payment provider for approval in step 1720. If theaccount is valid and sufficient funds are available (step 1722), thetitle merchant plugin may capture funds from the payment provider 1216(step 1724). In step 1726 the title merchant plugin sends a completetrade request to the digital lockbox. In step 1728 the digital lockboxcompletes the trade by claiming ownership over the titles in thelockbox, swapping the titles, and distributing them to the appropriateparty. In this example, the consumer may receive the digital contentfile titles, and the merchant may receive the payment slip title.

FIG. 18 is an exemplary flow chart describing the steps in which theconsumer chooses a secured account payment structure for the paymentslip title. In this example, a secure account is used as the paymentmechanism in order to protect the account holders name and the accountnumber. The actual account in this case can be a credit card, bank cardor other account or even some other payment mechanism. In this example,a secured account differs from a blinded account in that the secure codeused for approving the release of funds is obtained by the consumerrather than the merchant. This example is intended to show theflexibility of the title transaction system in supporting a variety oftransaction processes. In step 1802, the consumer purchases a digitalcontent file title from a merchant, such as MerchantStore.com. In step1804, the merchant places the titles expressing rights to the digitalcontent files and if requested a digital receipt into the digitallockbox 1212. In step 1806 the merchant generates a sales order titleand transmits it to the consumer's title manager 1208. In step 1808, theconsumer then selects the desired form of payment and if a receipt isrequired from the merchant. In this example, the consumer would select asecured account payment option. In step 1810 the consumer's titlemanager 1208 transmits the sales order to the title payment provider1214. In step 1812 the title payment provider 1214 verifies the orderand account, and if the account is valid and sufficient funds areavailable, creates a payment slip title and transmits it back to theconsumer's title manager 1208. In this example, the title enabledpayment provider's title publisher 1214 b creates the payment slip. Alsoin this example, the title enabled payment provider creates an approvalcode that the merchant can verify. In step 1814, the consumer's titlemanager 1208 places it into the digital lockbox 1212 which then notifiesthe merchant. In step 1816, the merchant's title merchant plugin 1210 dretrieves the contents of the lockbox. In step 1818, the title merchantplugin 1210 d verifies the payment slip title and if valid (step 1820)sends the payment slip title to the title enabled payment provider 1214.In step 1826 the title merchant plugin may capture funds from the titleenabled payment provider 1214. In step 1828 the title merchant pluginsends a complete trade request to the digital lockbox. In step 1830 thedigital lockbox completes the trade by claiming ownership over thetitles in the lockbox, swapping the titles, and distributing them to theappropriate party. In this example, the consumer may receive the digitalcontent file titles, and the merchant may receive the payment sliptitle.

FIG. 19 is an exemplary flow chart describing the steps in which theconsumer chooses a currency payment structure for the payment sliptitle. In this example, currency titles (such as US dollars) are used asthe payment mechanism. This is similar to a physical cash transaction.The currency can be any type of currency supported by the merchantand/or their payment provider. For example, the merchant could supportEuros or even reward points as valid currency. In step 1902, theconsumer purchases a digital content file title from a merchant, such asMerchantStore.com. In step 1904, the merchant places the titlesexpressing rights to the digital content files and if requested adigital receipt into the digital lockbox 1212. In step 1906 the merchantgenerates a sales order title and transmits it to the consumer's titlemanager 1208. In step 1908, the consumer then selects the desired formof payment and if a receipt is required from the merchant. In thisexample, the consumer would select US dollars currency. In step 1910,the consumer's title publisher 1206 creates a payment slip titlereferring to the US dollar currency and in step 1912 the title manager1208 places the payment slip title and the correct amount of currencytitles into the digital lockbox 1212 which then notifies the merchant.In this example, the payment slip title is provided but maybe optionalin currency title transactions since the currency titles are validthemselves and do not refer to a user held account. Additionally, thetitle manager 1208 can process the currency titles to ensure that theexact amount of currency titles is placed in the digital lockbox 1212.This processing depends on the currency type being supports, forinstance the title manager may need to divide the currency or go througha process where in the title manager exchanges the currency in thewallet for change. In step 1914, the merchant's title merchant plugin1210 d retrieves the contents of the lockbox. In step 1916, the titlemerchant plugin 1210 d verifies the payment slip title and if valid(step 1918) verifies the currency titles in step 1920. If the currencytitles are valid (step 1922) the title merchant plugin sends a completetrade request to the digital lockbox in step 1924. In step 1926 thedigital lockbox completes the trade by claiming ownership over thetitles in the lockbox, swapping the titles, and distributing them to theappropriate party. In this example, the consumer may receive the digitalcontent file titles, and the merchant may receive the payment slip titleand the currency titles. The merchant can optionally redeem the currencytitles to capture payment in their account as indicated in step 1928.

FIG. 20 is an exemplary flow chart describing the steps in which theconsumer purchases additional currency title using an account paymentstructure for the payment slip title. In this example the user is usinga credit card (identified) account in order to get currency titles. Instep 2002, the consumer purchases the currency title from a merchant,such as BankStore.com. In step 2004, the merchant places the currencytitle and if requested a digital receipt into the digital lockbox 1212.In step 2006 the merchant generates a sales order title and transmits itto the consumer's title manager 1208. In step 2008, the consumer thenselects the desired form of payment and if a receipt is required fromthe merchant. In this example, the consumer selects a checking account.In step 2010, the consumer's title publisher 1206 creates a payment sliptitle and in step 2012 the title manager 1208 places the payment sliptitle into the digital lockbox 1212 which then notifies the merchant. Instep 2014, the merchant's title merchant plugin 1210 d retrieves thecontents of the lockbox. In step 2016, the title merchant plugin 1210 dverifies the payment slip title and if valid (step 2018) verifies theaccount and funds in step 2020. If the account is valid and sufficientfunds available (step 2022) the title merchant plugin sends a completetrade request to the digital lockbox in step 2024. In step 2026 thedigital lockbox completes the trade by claiming ownership over thetitles in the lockbox, swapping the titles, and distributing them to theappropriate party. In this example, the consumer may receive the digitalcontent file titles, and the merchant may receive the payment sliptitle.

FIG. 21 is an exemplary flow chart describing the steps in which aconsumer uses a bank checking account title to purchase currency titles.This flow is an alternate and simplified flow to that shown in FIG. 20and is intended to demonstrate how a consumer can obtain currencysimilar to obtaining cash at an ATM. In step 2102 the consumer viewstheir bank account title using the wallet function in the title manager1208. Since this title accesses the consumer's checking account, itwould be a ticket. In step 2104, the consumer redeems the bank accounttitle in order to get currency titles (e.g. cash). The redemptionprocess could be one of many redeem methods that the bank account titlesupports and could be displayed to the consumer simply as “get cash”. Instep 2106 the bank verifies the request, account status, and ensuresthat sufficient funds are available. The bank processes this redemptionrequest because of the instructions contained within the title and, inthis example, the bank would be title enabled similar to the merchantsite 1210. If valid and sufficient funds (step 2108), the bank sends thecorrect amount of currency titles to the consumer's title manager 2110.If the account is invalid or insufficient funds are available, then theprocess is aborted in step 2106. In step 2112 the title manager confirmsreceipt and currency titles with the bank. If the acknowledgement isreceived (step 2108) by the bank, then the bank completes its end of thetransaction and captures payment funds from the consumers account instep 2112.

FIG. 22A is an exemplary flow chart describing the steps in whichconsumer uses a pre-pay card to purchase a currency title. In step 2202,the consumer purchases a physical pre-pay card from a merchant. In step2204, the consumer then uses the pre-pay card to purchase a currencytitle from a currency title merchant, selecting a specific currency typeand denomination, for instance, $5.00. In step 2206, the consumer entersthe pre-pay card account information into the currency title providerweb site. In step 2208, the currency payment provider verifies theaccount information with the merchant. In step 2210, if the pre-pay cardis valid, the currency payment provider generates the currency title andplaces it in the consumer's title manager wallet.

FIG. 22B is an exemplary flow chart describing the steps in whichconsumer bills the purchase of a currency title to a telecommunicationsaccount, such a mobile phone bill. In step 2222, the consumercommunicates with a title currency vendor through an SMS message or bydirectly dialing the premium number. Upon receipt or connection in step2224, the title currency merchant identifies the consumer by calleridentification. In step 2226, the currency title merchant then generatesthe currency title which is placed in the appropriate location in theconsumer's title manager wallet.

D. METHODS OF FACILITATING CONTACT MANAGEMENT

FIG. 23 depicts a simplified diagram according to one embodiment of theinvention, in which an online contact management system is optimizedthrough the redemption of titles.

The exchange of paper business cards has been a familiar part ofbusiness for many years. The advent of the Internet enabled businesscards to be digitized, and the exchange to be electronic. And while thiswas certainly easier and faster, digital business cards still sufferedfrom the static content inherited from paper business cards. Previously,there had been no optimal way to update transmitted digital businesscards short of permanently maintaining distribution lists andre-transmitting the updated digital business cards themselves.

FIG. 23 is an exemplary diagram of an online contact management system.This system is comprised of a user's device 2302, a hosted digitalcommerce engine 2303 that supports a profile manager 2304, title manager2305, and title publisher 2306, as well as an electronic mail system2307, a short message service system 2308, instant messenger system2309, and additional hosted digital commerce engine 2240. While onlythese exemplary examples are depicted, any number can be supported bythe invention. Each of the system elements is coupled to the other usinga network protocol 2301, such as TCP/IP over the Internet.

The hosted digital commerce engine 2303 (DCE) is intended to depict anexample implementation of the invention whereby the DCE hosts the titleenabled systems on behalf of consumers that use devices 2302 to accessthe DCE. The title enabled systems include the profile manager 2304 thatstores and manages the consumers profile information including theircontact information, the title manager 2305 that stores and manages theconsumer's titles, and the title publisher 2306 that generates titlesfor the DCE. In other embodiments of the invention, these title enabledsystems may reside independently of each other, or even be integratedinto a desktop application.

The electronic mail system 2307, short message service system 2308, andinstant messenger system 2309 depict external systems that can be usedto transmit and deliver titles to other consumers that may or may notuse an online title enabled solution. Each of these systems wouldtransmit Titles using their own network protocols and network systems.For example, an electronic mail system 2307 can deliver a title as anattachment to an electronic message using the SMTP protocol. Therecipient can retrieve the message using the POP3 protocol, and open theattachment in a title enabled application.

An additional hosted digital commerce engine 2310 is shown in FIG. 23 todemonstrate that consumers on separate DCEs can share contactinformation between each other. In this case the hosted digital commerceengine 2310 provides the same title enabled components and service asthe first engine 2303.

As previously described, a title is an object that may have a number ofelements and attributes including embedded digital content, ownershipattributes, and copy permissions. In this example, a contact title canredeem a single contact record, such as an electronic business card, ora contact list composed of multiple contact records, as in businessdirectory. The contact record contains information that would becommonly found in a business card, such as full name, company name,address, phone number, email, etc. The contact title comprises as apointer to the location of the contact record or contact list. That is,it directs the title management system to the specific online profilemanager 2304 upon which the contact record or contact list resides.

For instance, a contact owner creates a single contact record and storesit on a specific profile manager 2304. The owner then requests a contacttitle, which would then be generated by the title publisher 2306 andstored in the title manager 2305 for distribution by the contact ownerto users. Users could then use the contact title to redeem the latestcontact record whenever needed.

The profile manager 2304 can store any type and quantity of informationon behalf of the user including business, personal, financial,preference, and emergency information. Furthermore, any variation ofcontact titles can also be generated by the title publisher 2306 onbehalf of the user. The titles can be any number of tags, tickets, ortokens as deemed necessary by the user. For instance, a tag can bepublished that points to business contact information as describedpreviously. This tag can then be freely copied and distributed to otherbusiness recipients. By redeeming the tag, the recipient will only beable to dynamically read the business contact information from theprofile. Alternatively, a ticket can be published that points a trustedbusiness associate to financial information. This ticket can be redeemedby the business associate to dynamically read certain financial recordswithin the profile to support the users business needs. Another examplewould be to give a ticket to a spouse in order to read and updatecertain profile records.

FIG. 24A provides an example of a profile data structure 2401 that wouldbe stored by and managed by the profile manager 2304, as shown in FIG.23. The profile data will be based on a well defined schema that canvary from implementation to implementation. Generally the structure ofthe data will be flexible to accommodate a variety of information anddata types. As shown in FIG. 24A, the example data structure consists ofseveral profile sections. The personal information section 2402 providespersonal information on the user, including name, address, and contactinformation. The business information section 2403 provides businessinformation including company name, address, and contact information.The emergency information section 2404 provides emergency information onthe user such as medical insurance numbers and doctor contactinformation. The financial information section 2405 provides financialinformation on the user such as bank accounts and credit cards. Thetravel information section 2406 provides detailed information on theusers travel related activities such as preferred airlines, rewardprograms, and car rental agencies. The preference section 2407 willprovide a list of preferences of the user including system preferences,interface preferences, and notifications. Other information can becontained in the profile. Additionally, each informational elementwithin the profile can be a pointer to an external system, third partyprofile system, or even a title.

FIG. 24B is an exemplary diagram depicting a contact title. The contacttitle 2410 provides a pointer back to the profile stored in the profilemanager 2304. In this example, the contact title 2410 is a tag and canbe freely copy and distributed. Since the title is a tag it does nothave an authenticator stub. The title portion of the document containsbasic title information including issuer and any applicable securityindicia. The contact information 2412 portion of the title would becontained with content elements within a title. The contact information2412 provides basic information on the contact as well as a pointer tothe actual profile. The basic information can contain simple contactinformation for reference purposes and in the event that the onlineprofile is not available and no cached copy is available. The contactinformation 2412 portion of the title also contains a rules element thatdefines any usage rules regarding the profile such as what information,when it can be obtain, and how it maybe obtained. Furthermore, thiselement can contain a query statement or even many query statementsrestricting or opening the information available to the owner of thecontact title. The query statement or statements can be used by theprofile manager 2304 to execute queries against the profile database.The integrity of the queries can be protected within a title by thetitle infrastructure or even by an applied digital signature. Ifconfidentiality of the query is required, then an appropriate encodingstructure can be implemented and conveyed within the title.

FIG. 24C is an exemplary diagram depicting another contact title. Thiscontact title is a ticket and provides two distinct redemption methods.This differs from the previous example in FIG. 24B which had a singlequery redemption method. The query redeem method 2422 allows the ownerof the ticket to query the profile to obtain information. The updateredeem method 2423 allows the owner of the ticket to update theinformation contained within the profile. This structure provides veryfine grained control over the viewing and updating of information withina profile. It is also an efficient structure with which to implementconfidentiality policies in that certain people cannot view informationbut are allowed to enter or update information. Such a policy maybeimplemented in government agencies or even in corporations where highlyconfidential information can be entered but not viewed after it has beencommitted. The rules and query statements can be applied to the title asa whole and/or separately within the redeem methods. Since the titledepicted in FIG. 24C is a ticket it will have an authenticator stub2424.

FIG. 24D depicts an exemplary contact title table according to anembodiment of the invention. The contact title table 2423 will be usedby a title manager 2305 to store all titles obtained by the userincluding contact titles. These titles maybe stored separately fromother titles as shown in FIG. 24D or stored as one large collection ofall the user's titles. As shown in FIG. 24D the table can contain anynumber and type of contact title including tags 2425 and tickets 2427.

Contact titles can refer to individual contacts or a list of contacts,or set of lists of contacts, or even to other contact titles. Thisallows groups to be established and easily shared among members, witheach member gaining controlled and granular access to dynamic and up todate information on other members. These types of titles would besimilar in structure to the titles shown in FIG. 24B and FIG. 24C andwould also be stored and managed by the title manager 2305. The ruleswithin these titles can establish dependencies such as the user must bea member of the group in order for the title to be valid. Furthermore,these types of titles can be used between hosted digital commerceengines 2303 for collaboration, backup, and redundant operations.

FIG. 25 displays a simplified online title manager interface as would bedisplayed in a browser on user's device 2302, as described in FIG. 23.The display is divided into two sections, a title folder pane 2502 and atitle content pane 2506. The tile folder pane 2502 further organizes thetitles into folders based on the type of contact 2504. In this exampleonly contact titles are displayed since it is assumed the user would beviewing their contact information rather than viewing all titles intheir repository. Examples include friends, business, and group contactlists. Other types of categorizations can be setup by the user based onthe taxonomy of the titles. The title content pane 2506 presents thecontact details 2508 referenced by the selected contact title 2512, suchas name, company name, company address, telephone number, fax number,cell phone number, email, and a picture. If permissible, the user cansend a copy of the contact information to another associate or friend byselecting the send copy button 2510 on the interface. By sending a copy,the user is sharing the contact information and this would only occur ifallowed by the title. It is assumed for this example, that the title isa tag and can be freely copied. If the title was a ticket or token, thena shadow copy may be allowed to be shared that provides anyone with ashadow copy to have very limited contact information, but not the fullaccess privileges of the original ticket or token. This method ofsharing information is more convenient, flexible and controlled thantraditional or historical physical or electronic methods.

FIG. 26 displays a simplified flow chart describing the steps in which auser redeems a contact record (i.e. certain profile informationelements) with the contact title identifier. Each contact title has aunique alphanumeric string associated with it, called a contact titleidentifier. This contact title identifier can be expressed as a URL andby entering this URL (i.e. a string) into the address on the webbrowser, the contact title, and hence its contact record, can beredeemed, displayed, and downloaded. The user does not even need to beaware of the existence of title management system at all, simplyentering the contact title identifier into a browser. This exampleassumes that the actual title is a tag that is readily available, or theuser will be accessing a shadow copy of a ticket or token. This exampleis useful for sharing contact information outside of the titleecosystem. In step 2525, the user receives an electronic message with aURL linking to an associates business contact information. The URL is aunique identifier for the contact information and can even be printed ona physical business card. An example of the URL can behttp://somedce.com/contact?id=xxxx-xxxx-xxxx-xxxx where the id can be aspecially encoded sequence of characters that becomes the uniqueidentifier. In step 2527 the user clicks on the URL link in the emailmessage or enters the URL into the address field of their browser. Byclicking the link the user is connected to an online title manager 2305which in turn retrieves the title referenced by the unique identifier asindicated in step 2536. In step 2538 the title manager 2305 redeems thetitle. In step 2540 the profile manager 2304 verifies the title and ifvalid retrieves and returns the information according to the ruleswithin the title. In step 2542 the user views the contact information intheir browser and can optionally (if supported) save the contactinformation as a v-card, text file or other supported format.

FIG. 27 displays a simplified flow chart describing the steps in which auser views a list of their contact titles and redeems a contact title.In this example, the user is registered with the DCE 2303 and uses titlemanager 2305, as shown in FIG. 23. In step 2702, the user accesses theonline title manager through a web browser. In step 2704, the user openstheir “my contacts” page by selecting the appropriate link. In step2706, the title manager 2305 retrieves a listing of the users contacttitles and displays them to the user in a view similar to that shown inFIG. 25. In step 2708, the user selects a contact title from thedisplayed list. In step 2710 the online title manager 2305 redeems thecontact title. In step 2712, the profile manager (in another DCE such as2240) receives the request and verifies the title. If the title isvalid, the profile manager retrieves and returns the contact informationaccording to the rules within the title. In step 2714, the use views thecontact information in their browser and can optionally (if supported)save the contact information as a v-card, text file or other supportedformat.

Alternatively, the user can use an application such as a MicrosoftWindows application (e.g. Microsoft Outlook) or a Macromedia Flashapplication to access the title manager and request title listings. Inthis case, these applications can have the added benefit of cachingcontact information, to enhance performance, reduce network traffic, andwork offline. In this case, the application can retrieve contactinformation as the user requests and cache it for further reference, orcan automatically retrieve contact information in the background andupdate it on a frequent and scheduled basis. This type of support allowsthe user to remove their device 2302 from the network and still viewcontact information. Another alternative is to have the title managementfunctionality incorporated directly into the application along with thetitle data table.

FIG. 28 displays a simplified flow chart describing the steps in whichthe online title manager works with a locally run application toautomatically update locally stored contact records with contactinformation. In step 2802, the user configures the online title managerto periodically update locally stored contact records. In step 2804, theonline title manager selects the first contact title 2804. In step 2806,the online title manager uses the contact title to redeem thecorresponding contact record from the appropriate online titlepublishing system. In step 2808, the title manager updates the locallystored contact record with any changes 2808. Step 2810 determines if anymore contact records are left to update. If so at step 2810 then at step2814, the next contact record is redeemed. If not at step 2810, then theupdate is complete at step 2812.

E. TITLE STRUCTURE & MANAGEMENT

In another embodiment, a title structure is employed to optimize thedescription, creation, management and use of titles. Although, thestructure of title objects as described herein maybe representative ofcertain technologies and formats such as XML, this is only as an exampleand to demonstrate one embodiment. A title object can be represented ina number of formats including XML, ASN.1, or other proprietary formatsincluding textual and binary structures.

Although certain examples of the title structure are presented, thestructure is intended to represent any number of digital and physicalassets such as digital content, including music, images, video, andtext, as well as physical goods such as computers, cameras, vehicles,and appliances. Furthermore, a title can be used to represent virtualassets such as an online experience created through a series ofactivities and events, and can also represent currencies such as cash.In one an embodiment, a title structure can be used to represent both adigital and physical asset such as the identity of a person, whereby theperson has physical assets associated with their identity and alsodigital assets associated with their identity.

Referring now to FIG. 29, title object 2901 is displayed in which a setof stub elements 2903 are advantageously employed to optimize titles.Although several stub elements are displayed within the title object, inother embodiments, a title object may have no stub elements or may justhave one stub element.

In one aspect of the invention, a set of stub elements can be coupled toa specific title, to further optimize a title's content, attributes, andsecurity indicia. In another aspect of the invention, a stub element canbe created and coupled to the title, after the title is created. In yetanother aspect of the invention, a stub element can be coupled to a setor group of titles as specified in the stubs binding information. Thispermits efficient coupling of stubs to titles.

Title element 2902 comprises a structure used to describe the title andthe content (or asset), and express the rights associated with titleobject 2901. Title object 2901 can be issued for a specified period oftime or can be left infinite. The integrity of title object 2901 can befurther protected by the use of cryptographic algorithms. In oneembodiment, a digital signature is used. In another embodiment a chainedhash is used. Information within title element 2902 can be overridden byinformation contained within stub element 2902, as long as stub element2902 was issued by the same entity as title object 2901, and furtherspecifies what information is being overridden. In another embodiment ofthe invention, the issuer of a title object can delegate authority,thereby permitting other authorities to issue stubs on its behalf.

In one embodiment, title element 2902 is the only substantial piece of atitle object 2901 that can be stored in a lockbox and inspected byparticipating parties in a trading transaction. This embodiment providesfor separation between the descriptive information provided within atitle element (2902) and security indicia, and/or content, and/oradditional value-add information that maybe contained in stub elements(2903) that are coupled to the title. As an example, an effectiveseparation permits trading parties to inspect the title that is beingtraded without comprising the security of the security indicia.

Stub element 2903 is a flexible extension mechanism to the title object2901, and can be used to convey any related and appropriate informationsuch as value-add content or additional rule processing. Each stubelement 2903 can be issued and signed by different entities and can havedifferent lifetimes. In one embodiment, stub element 2903 is optionalfor a tag. In another embodiment, an authenticator stub must be includedfor all valid tickets and tokens. The authenticator stub contains thesecurity indicia that are used to authenticate a valid instance of aticket or token.

FIG. 30 depicts a simplified diagram according to one embodiment of theinvention, in which components of title element 2902 of FIG. 29 arefurther displayed. Descriptor component 3002 comprises primarydescriptive information regarding title object 2901 of FIG. 29,including ID, type, name, description, membership, and other technicalelements used for processing. Issuer component 3003 comprises the“issuer” (e.g. the creator) of title object 2901. In one embodiment,issuer component 3003 can comprise a textual name string. In anotherembodiment, issuer component 3003 can comprise an alpha-numeric IDstring. The textual name string can be informal or formal in context toparticipating parties, and if formal, may follow standard namingconventions such as an Internet Domain Name or even an X.500Distinguished Name. Validperiod component 3004 comprises the range ofdates of which title object 2901 is valid. In one embodiment,validperiod component 3004 includes a valid from date and valid to date.This time frame can further be specified as a UTC time value.Furthermore, the validity period of title object 2901 may be extended byattaching a stub element 2902 that overrides validperiod 3004.

Owner component 3005 comprises any valid type of identity indicia incontext to the applications that create, manage, and use titles. Theidentity indicia maybe formal or informal depending on the requirementsfor the applications. For example, the identity indicia for the ownercan be a name, email, phone number, X.500 Distinguished Name, user ID,tag pointer, etc. The identity indicia can include technical detail usedto authenticate the owner. For example, the identity indicia may providetechnical detail sufficient for an application to prove identity throughthe use of X.509 digital certificates or through the use of a biometricdevice. Similarly, the invention can utilize the identity indicia toinstruct an application relying on the title to properly authenticate anowner through trusted sources such as a remote access server, or througha domain controller and rely on that trusted sources to properlyauthenticate the owner using standard means such as username andpassword. In one embodiment, owner component 3005 is optional for a tagand a token, but is required for a ticket.

Content component 3006 can comprise applicable information pertaining toan asset such as a digital content file associated with title object2901. In one embodiment, content component 3006 comprises a pointerdefining the location of the digital content file. In anotherembodiment, content component 3006 comprises a query that can be used toobtain the digital content file. Content component 3006 can furthercomprise additional information such as ID, name, creator, rating, etc.A single title object 2901, as shown in FIG. 29, can express rights tomultiple digital content files, with the information regarding each inseparate content components 3006. For example, a title object 2901 canexpress rights to a music album where the album is comprised of multiplesongs, sheet music, pictures, and lyrics. Each content piece such as asong or lyrics in this case can be described in multiple contentcomponents 3006. In one embodiment, the content component 3006 canprovide detailed information relating to a physical asset instead of adigital asset. In this case, sufficient information is contained withinthe title content component to identify the physical asset such as SIC,manufacturer, manufacturer ID, model number, serial number, etc. Inanother embodiment, the content component can contain industry ortechnology specific identifiers such as that used by the IANA,Rosettanet or even technologies specifications such as RDF.

Rules component 3007 comprises statements specifying the specific rulesthat are applied to the use of the title, as well as procedures formonitoring events associated with title object 2901, as shown in FIG.29. In one embodiment, XSLT statements are used to define the rules andare executed in a compliant XSLT processor. In another embodiment, XrMLstatements are contained within the rules component to express rightsassociated with the title. In another embodiment, application specificrules are expressed in a proprietary format within the rules component3007 and can be executed by applications that understand, interpret, andexecute the rules. In another embodiment, the rules can be expressedthrough pointers, references, and links such as the rules component 3007containing a set of URI references to rule logic contained within adictionary. The rules component can contain business logic associatedwith the title and are not exclusively used for access control,authentication, or rights expression. Business logic rules can beincorporated for additional processing, pre-processing, eventprocessing, triggers, callbacks and other business logic that maybeassociated with the title. For example, rules can be implemented toperform event processing based on a certain action being taken, or aspecific state of the title. The rules expressed within this componentcan trigger off certain state information that maybe contained withinstub components along with information contained within the title. Therules can even be used to query information on other systems in order toperform a certain event. Rules component 3007 may have attributeelements provided within its structure for properly identifying therules language that is being described.

Custom component 3008 comprises custom information desired by titleobject 2901 publisher. In one embodiment, custom 3008 can contain anytext and/or valid XML, which in turn can be referenced throughout titleelement 2901 or stub element 2902. The custom component may also containpointers, references, or links to additional information or resourcesthat are applicable to the title object.

In one embodiment, manifest component 3009 comprises referenceinformation that must be included as part of title object 2901. Forexample, if a stub element must be included along with title object2901, then it could be referenced here. In another embodiment, externaldata that must be included as part of title object 2901, can also bereferenced within the manifest component. Applications that process thetitle can also process the content or referenced content within themanifest, and in another embodiment use this manifest as part of anintegrity check of the title object.

Signature component 3010 comprises cryptographic information used toverify the integrity of title element 2902. In an embodiment of thetitle object, the signature component can be an XML Digital Signatureblock in compliance with the W3C. In another embodiment, the signaturecomponent may contain proprietary cryptographic information used toverify the integrity of the title, as well as provide functionalitygenerally associated with digital signatures.

FIGS. 31A-B depict simplified diagrams according to one embodiment ofthe invention, in which components of stub element 2902, as shown in ofFIG. 29, are further displayed. Referring now to FIG. 31A, bindingcomponent 3101 comprises detailed information on how a stub will bebound to a title or set of titles. In one embodiment, the bindinginformation can be as simple as a single title ID. In anotherembodiment, the binding information can be a complex statement where thestub is bound based on a set of properties or parameters. Anotherembodiment can bind a stub to a title or set of titles based on aspecific reference such as an XPointer. Issuer component 3102 comprisesthe “issuer” (e.g. the creator) of stub element 2902. In one embodiment,as with issuer component 3003, as shown in FIG. 30, issuer component3102 can comprise a textual name string. In another embodiment, issuercomponent 3102 can comprise an alpha-numeric ID string. The textual namestring can be informal or formal in context to participating parties,and if formal, may follow standard naming conventions such as anInternet Domain Name or even an X.500 Distinguished Name. Validperiodcomponent 3103 comprises the range of dates of which stub element 2902is valid. In one embodiment, validperiod component 3103 includes a validfrom date and valid to date. This time frame can further be specified asa UTC time value. Signature 3105 comprises cryptographic informationused to verify the integrity of stub element 2902 utilizing similarconventions to the signature component 3010 in the title element.

Referring now to FIG. 31B, stub content component 3104 as shown in FIG.31A is further described. In one embodiment, authenticator component3106 comprises information that can be used by title transaction systemapplications to authenticate title object 2901. In another embodiment,authenticator component 3106 can verify that title object 2901 is avalid, single instance of a title object. Tickets and tokens within thetitle ecosystem will have authenticator stubs associated with the titlein order to properly authenticate the title object, and validate that itis the correct instance of the title object. In another embodiment, atag or shadow title may not have an authenticator stub as it may not berequired for authentication and validation. In this example, a shadowtitle would be a title that is a “copy” of the valid and authenticatetitle, although by itself is not valid. Shadow titles, in this instance,are valuable techniques for sharing content, such that a shared titlecan still give the recipient access to sample information, or limitedcontent such as a restriction for one time only use, or access to a lowquality version of a song. In an embodiment, the authenticator stubcontains the security indicia associated with the title, and thestructure of the security indicia would be dependent on theauthentication technique applied by the publisher of the title.

In one embodiment of authenticator component 3106, a chained hashtechnique can be employed to authenticate the title. Authenticatorcomponent 3106 would contain the encrypted seed for the hash, a copy ofthe current valid hash in the hash chain, and an algorithm identifier,all of which would be used by a state server to authenticate the titlein conjunction with an index that the state server maintains. In anotherembodiment, a hash tree can be implemented within the authenticator stubto support divisible titles. The hash tree technique can be employed bytitles that represent cash or some form of currency that can be divided.

In another embodiment, stub content 3104 comprises embeddedcontent 3107,which can further include a digital content file. Embeddedcontent 3107can be also be used by issuers who wish to provide an option to theircustomers for embedding content directly into title object 2901.Advantages includes additional functionality in processing title object2901 (for example, while executing a trade only title objects areincluded in the lockbox, therefore eliminating any potential securityexposure by having embedded content directly inside the title object2901). In another embodiment, the embeddedcontent can contain textualinformation or even XML structured information.

In another embodiment, stub content 3104 comprises rules component 3108.In another embodiment, a rules component 3108 procedure can overriderules component 3007 procedure, as shown in FIG. 30. The structure ofthe rules would be similar to that of the rules component 3007 in thetitle element.

Other component 3109 comprises other functionality that may be includedin stub content 3104 and defined by the publisher of the title andunderstood, interpreted, and processed by applications involved in thetitle transaction ecosystem.

Referring now to FIG. 32, descriptor component 3002 as shown in FIG. 30is further described. Descriptor component can function as a “header”element for title object 2901, as shown if FIG. 29, and providesdescriptive information related to the title. The descriptor can be usedby system applications used in processing the title, and can be used bysystem applications involved in generic processing of titles such thatthey only interpret and act upon title specific information regardlessof the content they contain, reference, or express rights to. Forexample, a system application may only be concerned with the type oftitle that is being processed such as tag, ticket, or token. Likewise,another system application may only be concerned with the securityclassification and the priority setting associated with the title.

Titleid component 3201 comprises the unique identifier associated withthe title. In one embodiment the titleid is a GUID (globally uniqueidentifier). In another embodiment, the titleid is a unique identifierwithin all titles created by a single issuer. The identifier used intitle id can be formal or informal, registered or not registered.Titletype component 3202 comprises the type of the title object 2901such as tag, ticket, or token and states the type in this component. Thetype can be specified as a textual string element such as “Tag”,“Ticket”, or “Token”, or in another embodiment can be specified throughformal or informal identifiers such as a registered OID (objectidentifier). In another embodiment, titletype can provide a formalstructural hierarchy to the title such that title can be associated witha family of titles, and can be used to describe how the title was formedbased on a type of inheritance. The titletype would contain specifictitle-typing indicia such that the processing applications can retrieve,understand, interpret, and process properties associated with ancestortitles. In another embodiment, the titletype can be used to referencethe template that was used to create the title.

Titlename component 3203 is a short text string used to name the titleobject 2901, and is similar to a file name. Titledescription 3204comprises a longer text string, and can be used to contain primarydescriptive information regarding title object 2901, including ID, type,name, description, and technical elements used for processing.Typeofcontent 3205 comprises the type of content referred to by titleobject 2901. In one embodiment, Typeofcontent 3205 can include termssuch as “mixed”, “music” or other descriptive term. In anotherembodiment, typeofcontent can contain more formal definitions such asMIME type classifications or industry standard codes such as that usedin Rosettanet and EDI systems. Additionally, typeofcontent can be usedto specify a title content such that other titles may be embedded withinor specified by this title. In this example, a title can refer to othertitles and convey additional rules or taxonomy regarding the referred toor contained titles.

Securityclass component 3206 comprises security classificationidentifiers that can be used by processing applications. In oneembodiment, the classification can be as simple as a numerically orderedscheme that identifies the security processing level required of thistitle from an range of low to high. In another embodiment, theclassification scheme can be a registered scheme or even a moretechnically descriptive classification such as that used in ASN.1encoding schemes for X.509 certificates. Priorityflag component 3207comprises a priority indicator to be used by processing applications toapply appropriate levels of processing such is the case for servicelevel agreements, or quality of service guarantees. For example, a highpriority setting can indicate to processing applications that thistitles requires priority processing (that is, preferred status) and canbe placed at the front of the queue. In an embodiment, the priorityflagcan be textual, numerical, or structured information to be used byprocessing applications. In another embodiment, the priorityflag canprovide or reference technically descriptive service level agreementdetail that can be directly processed by applications, such as that usedin Policy Based Networks or Directory Enabled Networks.

Trackit component 3208 comprises indicators for the level trackinginformation that should be maintained by processing applications, suchas if title object 2901 must be tracked on every event. In anotherexample, the trackit component can specify that both the transactionrequest and response information be tracked in the log. In anotherembodiment, the trackit component can specify that every action must betracked in a stub element 2903 of the title object 2901. By trackingtransactions and events in the stub, the title can maintain a journal ofactivities and provide a self contained log. The logging activity withina single stub or multiple stubs can be used as a record of theactivities that comprise the titles experience. This can be used as aneffective tool for analysis and reporting, and is also an essentialaspect for titles creating and representing an experience, whereby thetitle maintains its own state. For example, a title can be used tocreate a digital treasure hunt, where the owner of the title redeems itfor each step in the treasure hunt. Completing each step requires thatthe title maintain its state and also record the activities completed bythe owner. When the treasure hunt is complete, the owner is entitled toreceive a prize. The trackit component 3208, along with the recordingability of stubs, permits the title to create this experience. The titlealso becomes a record that can prove a sequence of steps. The trackingability enabled by the trackit component 3208 and stubs can be used byrules components for fine-grained control over a title and for eventprocessing. For example, based on a specific step within an experience,the title can initiate certain actions. This would require understandingof the current state and the sequence of steps that led up to the event.

The membership component 3210 comprises title membership informationsuch as the group or family that a title may belong. In one embodimentthis could be implemented as a group identifier and in anotherembodiment this could be implemented through references.

Referring now to FIG. 33, content component 3006 as shown in FIG. 30 isfurther described. The content component is used to describe the contentor asset to which the title expresses rights. In the case of digitalcontent, the information would specifically refer to the detailassociated with that digital content such as an encoded song or video.In the case of a physical asset, the content information would providedetailed information regarding the physical asset such as location,coordinates, SIC, manufacturer, model number, part number, and/or serialnumber.

ContentID component 3302 comprises an identifier for the content. In oneembodiment, contentID component 3302 can be used to convey any type ofcontent ID used by content publishers such as DOI, OID, or a proprietaryscheme. In another embodiment, the identifier could be a serial number.Contentcreator component 3303 comprises a text string identifying thecreator of the content such as a digital content file or asset. Thecontentcreator component can be a textual string, an identifier, or evenstructured identity indicia on the creator as described in otheridentity related components such as the owner component 3005.Contentdescription component 3304 comprises a longer text string, andcan be used to contain primary descriptive information. Contentcategorycomponent 3305 comprises the categories or taxonomy of content referredto by title object 2901. In one embodiment the contentcategory can be asimple text label, while in another embodiment the contentcategory canbe a structured component with detailed taxonomy on the content referredto by the title object.

Quantity component 3306 comprises the instances of a single digitalcontent file associated with title object 2901. Value component 3307comprises the economic price associated with title object 2901. Iconcomponent 3308 comprises the computer icon to be displayed in the titlemanagement system or by processing applications.Shortform/shortformpointer component 3309 comprises a pointer to asample of the content or asset such as an image, thumbnail image, shortsample audio, or low quality audio. In another embodiment, the shortformcomponent can contain the actual sample such as textual information. Forexample, the shortform can contain a name and email address for acontact record. In this case, the shortform provides quick and immediateaccess to information, whereas the title provides access to the entirecontact information. Shortform and shortformpointer and usefulcomponents when titles are traded and shared.

Redeem 3310 component comprises methods for the redemption of the titleobject. Redemption of the title object can be obtaining the digitalcontent that the title refers to, or can also be the trading of thetitle or the sharing of the title. The redeem component is a structuredcomponent that has one to many methods describing in detail how thetitle may be redeemed. This structure is flexible to accommodate avariety of redemption processes and procedures that are required bypublishers and consumers of title objects.

Rating component 3311 comprises a content rating for the digital contentfile, such as the MPAA rating of “G”, “PG”, etc. The detail within therating component is context specific according to the content or assetreferred to by the title object. Contentintegrity 3312 comprises acryptographic message digest which is used for verification of digitalcontent integrity. The contentintegrity component provides attributes toidentify the method employed for integrity checking such as the SHA-1algorithm. Keywords component 3313 comprises a list of keywordsassociated with the content or asset. This can be used during queries,searches, and categorizations.

Referring now to FIGS. 34A-B, redeem component of FIG. 33 is furtherdescribed. Redeem component further comprises a set of methods 3402,including a query component 3404, a rules component 3405, a pointercomponent 3406, and other component 3407. As mentioned, the redeemcomponent can include from one to many methods, with each methoddescribing how the title object can be redeemed. In one embodiment, amethod can describe how the digital content maybe obtained. In anotherembodiment, a method may describe how digital content maybe obtained ina streaming version. In yet another embodiment, a method can describehow the title object can be shared, traded, sampled, archived,destroyed, communicated, or processed depending on the specificrequirements of the publisher and the consumer application. In anotherembodiment, a redemption method can be used to specify how a new titlecan created based on the current title object being redeemed. A redeemmethod may include one, some, or all of the components identified inFIG. 34B.

In another embodiment, a query component 3404 comprises searchingprocedures for the digital content file. This component has attributesto identify the query mechanism being described. In one embodiment, thequery component can contain SQL queries in order to obtain dynamicinformation from a database. In another embodiment, the query componentcan contain an XQuery statement to obtain data from an XML data set ordocument collection. In another embodiment, the query component cancontain computer executable statements to process some query businesslogic in order to calculate or process the results. The rules component3405 comprises statements specifying the specific rules that are appliedbefore, during, and after redemption. The structure and statementscontained within the rules component is similar to that described forthe rules component 3007 in the title object, in that it can contain anddescribe any type of rules statement such as XSLT, XrML, BRML; and canalso contain pointers or references to external rules. However, thisrules component is specifically associated with a redemption method.

The pointer component 3406 specifies a pointer to the content or assetbeing referenced by the title object. The pointer structure is specifiedin the component and in one embodiment can be a simple URL. In anotherembodiment this may be a URI, XPointer, XLink, coordinates or otherpointer description to the content or asset.

Other component 3407 comprises additional functionality that may beadded to the set of methods 3402. The other component accommodatesproprietary or custom information to be used during redemption andshould be understood, interpreted, and processed by applications.

Referring now to FIG. 35A, issuer component of title element 2902 asshown in FIG. 30 is further described. Issuedate 3502 comprises the datethat title object 2901 was issued. In one embodiment, name component3503 comprises a textual name string for the issuer of title object2901. As described earlier, the name component can be a formal name forthe issuer of the title such as a registered Internet Domain Name orX.500 Distinguished Name. In another embodiment, ID component 3504 cancomprise an alpha-numeric ID string for the issuer of the title object2901. As described earlier, the ID component can be a formal or informalidentifier.

Referring now to FIG. 35B, owner component 3005 of title element 2902,as shown in FIG. 30, is further described. Name 3506 comprises a textualname string for the owner of title object 2901 or as described earlierfor the owner component can be a formal name definition such as a X.500Distinguished Name. Authentication component 3507 comprises technicaldetail such as cryptographic information that can be used to verify theidentity of the title object 2901 owner. The technical information willbe sufficient enough for the processing application to correctlyidentify and authenticate the owner of the title. Information containedin this component can be cryptographic information used in processessuch as biometric identification or even for identification through theuse of digital certificates and a public key infrastructure. Component3510 comprises the activation date for title object 2901. Title objectprocessing applications may use the information contained within thevalidperiod component 3004 to ensure that a title object will not beprocessed before it becomes valid as specified in the from component3510 and not processed after it becomes invalid as specified in the tocomponent 3509. The date can be specified in the UTC date/time format.

Referring now to FIG. 36, a simplified diagram displaying title object2901 lifecycle and management steps is displayed, according to oneembodiment of the invention. Initially, a title is designed at step3602. The design process would take into consideration the sourcecontent or asset and identify properties that should be included in thetitle. The design process must also carefully consider the redemptionmethods that are appropriate for the content (or asset) and clearlyspecify the redemption processes that will be described in each method.All taxonomy, security, rule processing, business logic, and descriptiveinformation will be identified, described, and documented during thedesign phase of a title object. As an output to the design phase, atitle object template will generally be created and identified. Thetemplate is used as a technical guideline, script or set of instructionsthat can be used during the creation process to generate a title object.Templates can be stored for re-use. An application that assists orimplements the design aspects of a title can provide typical designfunctions such as collaboration, planning, scheduling, and reporting.Collaboration in title design can be an effective tool for creatingcomplex title objects that consist of multiple elements. As an example,a digital album can involve several parties for design of covers,images, audio, text, and sheet music elements. Scheduling aspects mayberequired to schedule the creation of titles. For instance, titles can becreated on demand on created in batch.

The next step in the lifecycle and management is the production orcreation stage, as shown in create title 3604. The create title 3604stage involves a “factory” or similar process to produce titles.Production can be on-demand, in bulk, or as scheduled depending on therequirements of publishers. Implementations of the create title 3604process can consider request, complexity, reporting, control, andperformance factors to ensure that production demands are satisfied.Additional functionality supported by the create title 3604 process caninclude warehousing and distribution of titles that are created.Warehousing and distribution functions can be used to service requestsby several parties involved in the title object lifecycle such as insyndication and content distribution networks. The creation process isdescribed further in FIG. 37A. The output from this stage would be titleobject instances.

The next stage in lifecycle and management is the storage of titles asdepicted in 3606. This stage would include typical title object storageand management functions including securing title objects as they arestored, properly authenticating owner's access to title objects, andviewing title objects that maybe stored. Storage functions can beimplemented as server applications or incorporated directly into clientapplications that run directly on consumer computing devices such asdesktop computers and mobile devices. Server applications can beimplemented to support a community of users. Storage of title objectscan be a critical stage in the lifecycle as a title object may tend tospend a majority of its life in storage. Therefore, it will be essentialfor applications involved in this stage to provide proper handling suchas ensuring that security requirements are satisfied.

The next stage in the lifecycle and management is the consuming oftitles as depicted in 3608. Consuming of titles primarily involves theuse of titles in order to experience the content. This is accomplishedby redeeming the title using the variety of redemption methods definedwithin a title object. Applications that are involved in this stage canbe complex as they must effectively process the title object, includingrule processing, business logic processing, interpretation ofdescriptive information, resolution of references and pointers, and mostimportantly the authentication of titles and owners. In an embodiment ofthe lifecycle there would also be the communication, interpretation andprocessing of fine-grained trust between all parties involved in thelifecycle. In one embodiment, the title manager, resolver, state server,content proxy, and content server would all be involved in theconsumption of a title object.

Consume title 3608 component can tie back to the design title 3602 andcreate title 3604 components to complete the lifecycle. In oneembodiment, the detail obtained through the consumption and use of titleobjects will be essential information used in the design of subsequentand additional titles. In another more direct embodiment, theconsumption of title can be effectively tracked and directly used by onetitle object to create a new or enhanced title object template. In thisinstance, as a title is consumed it will progressively track and updatevarious properties within its stub element structure. These propertieswill combine to represent the experience of the title object, and on aparticular redemption method will generate either a new title objecttemplate or an enhanced title object template. The new or enhancedtemplate can then be used to create additional title objects. In thisembodiment, a title can be an effective tool and mechanism for use inexpert systems or artificial intelligence engines. In anotherembodiment, a title can be used as a data source into the create title3604 process to create new titles, and this can be triggered by one ofthe redemption methods in the original title. This embodiment can be aneffective technique in using title objects for syndication ordelegation. It can also be an effective technique for transforming atitle object, enhancing a title object, evolving a title object, ormorphing a title object.

FIG. 37A is a simplified embodiment of the create title 3604 processshown in FIG. 36, according to one embodiment of the invention. Thetitle publisher/title factory 3702 is responsible for implementing theprocess that creates titles. In this embodiment, the factory receivesdata/meta-data 3704 from a content publisher and also receives a titletemplate 3706. The data and template combined may be used by the factoryto produce the title. The data 3704 portion may provide specific data tobe included in the title as well as instructions to control productions,such as the template to use, the number of titles to be produced, andthe location of where the titles are to be sent. The template 3706 canbe referenced by the content publisher and actually stored in thefactory or it can be sent by the content publisher to the factory. Thedata 3704 source and format depends on the content publisher and can beproprietary information, standards-based information, or even anothertitle object. The template can be an XSLT template or can be any formatof template instructions that can be interpreted and processed by thefactory. In this embodiment, the factory will use the template tointerpret and process the data in order to produce title objects.Although FIG. 37A shows the factory output as title objects, anotherembodiment may only produce a single title, and yet another embodimentcan produce great quantities of titles to fulfill a quota.

Title trading is supported by the title technology and the applicationsthat process titles. Trading between parties can be accomplished in manydifferent ways and involve any number of technologies and techniques.Referring now to FIG. 37B, a simplified diagram of a digital lockboxcomponent is shown, according to one embodiment of the invention. Inthis example, digital lockbox component 3710 is used as a securecontainer for the title objects that are being traded between party Aand party B. Digital lockbox component 3710 further comprises two secureareas that contain the title objects for trade, party A's title objects3716 are stored in drawer 3712, while party B's title objects 3715 arestored in drawer 3714. Digital lockbox component 3710 further permitsinspection by either party into the contents of the lockbox in order foreach to verify the title objects and approve or cancel the trade.Digital lockbox component 3710 would not permit ownership to betransferred and only permits viewing of sample content, or of thecontent permitted by a redemption method (e.g. content legally shared).When both parties have confirmed the trade and approved of title objects3716 and 3715, digital lockbox component 3710 claims ownership over alltitle objects in the lockbox, and then transfers ownership to therespective party. Transferring ownership involves delivering titleobjects 3716 and 3715 to the appropriate title manager 3718 and 3720 andsubsequently having title managers 3718 and 3720 claim ownership fortheir respective party. Digital lockbox component 3710 in this case issimilar to a 3^(rd) party escrow system by providing a substantial levelof guarantee to both parties involved in the trade. For instance, if anypart of the trade failed during the claim process, digital lockbox 3710can rollback the entire trade. Digital lockbox 3710 can also provide alegal record of the trade to all parties involved in the trade. As shownin the example, the contents of the trade can be one or multiple titleobjects.

In another embodiment, digital lockbox component 3710 supports atransfer in which party A intends to give party B the title objects withnothing expected in return. For example, party B could sample thecontent and review it before accepting the transfer. The claim processfor the title objects would remain the same and digital lockboxcomponent 3710 can provide a record of the transaction. In yet anotherembodiment, digital lockbox component 3710 can support: multi-party,dependent trades, nested-trades. In yet another embodiment, digitallockbox component 3710 may support complex trades involving servicelevel agreements, insurance, legal recourse, guarantees, and contentintrospection. For example, a highly confidential trade can beimplemented with special content inspection rights provided throughdigital lockbox component 3710. This would provide both parties with theability to view the confidential content for the duration of the tradenegotiations under special circumstances, such as viewing directly usinga controlled application similar to that provided by digital rightsmanagement software.

In another embodiment, a simplified trade can be executed directlybetween two parties by having title manager components 3718 and 3720simply transfer title objects 3716 and 3715, and subsequently have thereceiving title manager 3718 and 3720 claim ownership over therespective title objects 3716 and 3715. In yet another embodiment, atrade can be executed directly by title manager components 3718 and 3720acting as secure agents. An established protocol can be used by titlemanagers 3718 and 3720 to securely trade the title objects. For example,a Boolean circuit can be utilized by the title managers. In anotherembodiment, security ownership indicia associated with each title objectcan be updated according to specific title authentication techniquesemployed by each respective title objects 3716 and 3715.

Although the structure and management of titles as described herein maymake specific or general references to certain technologies such as XML,other technologies may be available. Title structures can be representedin any number of formats, and management or lifecycle processes can beimplemented in any number of ways. For example, a title object and itsmanagement maybe implemented directly in computer executable code. Thistype of title object can be an effective method for creating titleenabled mobile code, self-executing title objects, digital robots, andcrawlers. In this example, using the title object can providesignificant benefits in that trust and integrity can be transmitted withthe mobile code. In the example where the title object is self-executingcode, the title object can implement title creation functions to morphor transform itself. In another embodiment, a title object can bedescribed in a scripting language and executed as required. For example,a title object can be described and implemented as a Javascript programand embedded within a web page. The Javascript program would comprisenot only the title structure, but also the logic to process the titlessuch as implementing the rules and redemption methods. The Javascriptcode can be used to embed titles in a web page and participate in thetitle transaction ecosystem.

In another embodiment, title objects and management components aredirectly embedded into hardware. For example, a title object can bestored on a smartcard device along with a secure management componentthat is responsible for processing and updating the title object'ssecurity indicia. A user would subsequently insert the smartcard into aterminal in order, among other things, to guarantee transactionvalidity. The title object's security indicia would be securely updateddirectly on the smartcard, as a security precaution. In another example,management components are implemented as firmware in hardware computingappliances (i.e., firewalls, consumer set-top boxes, etc.), or inportable hardware tokens that can be attached to computing devicesthrough direct interfaces, cables or wireless connections.

F. CONCLUSION

Advantages of the invention include the ability to easily andefficiently manage and share titles over a network such as the Internet.Additional advantages of the invention include creating an ecosystemwhereby digital content providers can offload the burden of managing andenforcing user access rights, yet receive revenue from third partytransactions.

Having disclosed exemplary embodiments and the best mode, modificationsand variations may be made to the disclosed embodiments while remainingwithin the subject and spirit of the invention as defined by thefollowing claims.

1. A computer-implemented method for effecting transfer of title objectsusing one or more computing devices, comprising: using a first subset ofthe one or more computing devices, storing a first title object receivedfrom a first entity with a lockbox programmed to securely executetransfer of title objects between parties, the first title object havingbeen previously encoded with title data representing at least one right,the first title object being encoded to effect anonymous redemption ofthe at least one right by presentation of the first title object to atitle-enabled process, the first title object also having beenpreviously encoded with an associated title object state correspondingto a first value which corresponds to an externally stored state that isstored separately from the title object state; verifying validity of thefirst title object by comparing the associated title object state andthe externally stored state; in response to verification of the validityof the first title object, transferring ownership of the at least oneright represented by the first title object to a second entity byreleasing the first title object from the lockbox to the second entityupon satisfaction of at least one criterion; and using a second subsetof the one or more computing devices, updating both the associated titleobject state and the externally stored state to correspond to a newvalue in conjunction with releasing the first title object to the secondentity, thereby ensuring that only a single valid instance of the firsttitle object is in circulation.
 2. The method of claim 1 furthercomprising receiving a second title object from the second entity withthe lockbox before releasing the first title object, and releasing thesecond title object from the lockbox to the first entity uponsatisfaction of the at least one criterion.
 3. The method of claim 2wherein the at least one criterion comprises receipt by the lockbox ofboth of the first and second title objects.
 4. The method of claim 1wherein the at least one criterion comprises approval by at least one ofthe first and second entities of release of the first title object. 5.The method of claim 1 further comprising providing an interface to atleast one of the first and second entities for interacting with thelockbox.
 6. The method of claim 5 wherein the interface is operable toenable any of viewing of the first title object, verification of thefirst title object, inspection of the first title object, sampling ofthe first title object, and approval of release of the first titleobject.
 7. The method of claim 6 wherein the interface employs acontrolled program for enabling restricted access to the first titleobject.
 8. The method of claim 1 further comprising updating the titleobject state and the externally stored state corresponding to the firsttitle object as a result of interaction of the lockbox with the firsttitle object.
 9. The method of claim 1 further comprising storing thefirst title object in a memory associated with and controlled by thelockbox.
 10. The method of claim 1 wherein the lockbox is controlled byone of the first and second entities.
 11. The method of claim 1 whereinthe lockbox process is controlled by a third entity.
 12. The method ofclaim 1 further comprising providing a software application to at leastone of the first and second entities to facilitate interaction with thelockbox.
 13. The method of claim 1 wherein the lockbox comprises one ofa plurality of lockboxes and the first and second entities comprise twoof a plurality of entities, the method further comprising facilitatingtransfer of selected ones of the title objects among the plurality ofentities with the plurality of lockboxes substantially simultaneously.14. The method of claim 1 wherein the first entity is a seller of aproduct represented by the first title object, and the second entity isa buyer of the product, the method further comprising: facilitatingselection of the product by the buyer; facilitating transmission of thefirst title object from the seller to the lockbox in response toselection of the product by the buyer; facilitating transmission of asales order from the seller to the buyer, the sales order identifyingterms of sale and including information relating to the lockbox; andfacilitating transmission of a payment title object from the buyer tothe lockbox using the information, receipt of the payment title objectby the lockbox corresponding to one of the at least one criterion. 15.The method of claim 14 further comprising: notifying the seller that thepayment title object has been received by the lockbox; facilitatingverification of payment by the seller; and facilitating capture of fundsby the seller using the payment title object.
 16. The method of claim 1further comprising: receiving a second title object from the secondentity with the lockbox before releasing the first title object; undercontrol of the lockbox, controlling access to the first and second titleobjects such that the first entity has restricted access to the secondtitle object and the second entity has restricted access to the firsttitle object; and releasing the second title object from the lockbox tothe first entity upon satisfaction of the at least one criterion. 17.The method of claim 16 wherein the restricted access enables the firstand second entities to perform at least one of viewing of, verificationof, inspection of, and sampling of the second and first title objects,respectively.
 18. The method of claim 1 wherein the first title objectrepresents a right to access digital content, and wherein the digitalcontent is maintained separately from the first title object.
 19. Themethod of claim 18 further comprising facilitating access to at least aportion of the digital content by the second entity under control of thelockbox.
 20. The method of claim 1 wherein the first title objectrepresents a right to access digital content, and wherein at least aportion of the digital content is embedded in the first title object.21. The method of claim 20 further comprising facilitating access to theportion of the digital content by the second entity under control of thelockbox.
 22. The method of claim 1 further comprising generating arecord of the receipt and release of the first title object.
 23. Themethod of claim 1 wherein the first and second entities are representedby first and second title manager processes, respectively, the first andsecond title manager processes being operable to facilitate organizationand management of selected ones of the title objects associated with thefirst and second entities, the method further comprising facilitatinginteraction among the first and second title manager processes and thelockbox to facilitate handling of the first title object.
 24. The methodof claim 23 further comprising receiving instructions from at least oneof the first and second title manager processes, the instructions beingfor use by the lockbox to facilitate handing of the first title object.25. The method of claim 1 further comprising facilitating manualverification of satisfaction of the at least one criterion by at leastone of the first entity and the second entity.
 26. The method of claim 1further comprising facilitating verification of satisfaction of the atleast one criterion by an automated process associated with at least oneof the first entity and the second entity.
 27. The method of claim 1further comprising: receiving at least one additional title object fromany of the first, second, and at least one additional entity with thelockbox; and releasing the at least one additional title object from thelockbox to any of the first, second, and at least one additionalentities upon satisfaction of the at least one criterion.
 28. The methodof claim 1 wherein the lockbox is operable to facilitate any ofmulti-party trades, dependent trades, nested trades, and complex trades.29. The method of claim 28 wherein the complex trades relate to any ofservice level agreements, insurance agreements, legal recourseagreements, and guarantee agreements, content inspection agreements. 30.A platform for facilitating transfer of title objects, comprising one ormore computing devices, a first one of the computing devices beingprogrammed to implement a lockbox for securely executing transfer oftitle objects between parties, the lockbox being operable to store afirst title object received from a first entity using a first subset ofthe computing devices, the first title object having been previouslyencoded with title data representing at least one right, the first titleobject being encoded to effect anonymous redemption of the at least oneright by presentation of the first title object to a title-enabledprocess, the first title object also having been previously encoded withan associated title object state corresponding to a first value whichcorresponds to an externally stored state that is stored separately fromthe title object state, a second subset of the computing devices beingfurther programmed to verify the validity of the first title object bycomparing the associated title object state and the externally storedstate, and in response to verification of the validity of the firsttitle object to transfer ownership of the at least one right representedby the first title object to a second entity by releasing the firsttitle object to the second entity upon satisfaction of at least onecriterion, the second subset of the computing devices being furtherprogrammed to update both the associated title object state and theexternally stored state to correspond to a new value in conjunction withreleasing the first title object to the second entity, thereby ensuringthat only a single valid instance of the first title object is incirculation.
 31. The platform of claim 30 wherein the lockbox is furtheroperable to receive a second title object from the second entity beforereleasing the first title object, and release the second title object tothe first entity upon satisfaction of the at least one criterion. 32.The platform of claim 31 wherein the at least one criterion comprisesreceipt by the lockbox of both of the first and second title objects.33. The platform of claim 30 wherein the at least one criterioncomprises approval by at least one of the first and second entities ofrelease of the first title object.
 34. The platform of claim 30 whereinthe at least one computing device is configured to provide an interfaceto at least one of the first and second entities for interacting withthe lockbox.
 35. The platform of claim 34 wherein the interface isoperable to enable any of viewing of the first title object,verification of the first title object, inspection of the first titleobject, sampling of the first title object, and approval of release ofthe first title object.
 36. The platform of claim 35 wherein theinterface employs a controlled program for enabling restricted access tothe first title object.
 37. The platform of claim 30 wherein the atleast one computing device is operable to facilitate updating of thetitle object state and the externally stored state corresponding to thefirst title object as a result of interaction of the lockbox with thefirst title object.
 38. The platform of claim 30 further comprising amemory under control of the lockbox, the at least one computing devicebeing configured to store the first title object in the memory.
 39. Theplatform of claim 30 wherein the at least one computing device iscontrolled by one of the first and second entities.
 40. The platform ofclaim 30 wherein the at least one computing device is controlled by athird entity.
 41. The platform of claim 30 wherein the at least onecomputing device is configured to provide a software application to atleast one of the first and second entities to facilitate interactionwith the lockbox.
 42. The platform of claim 30 wherein the lockboxcomprises one of a plurality of lockboxes and the first and secondentities comprise two of a plurality of entities, the at least onecomputing device further being configured to facilitate transfer ofselected ones of the title objects among the plurality of entities withthe plurality of lockboxes substantially simultaneously.
 43. Theplatform of claim 30 wherein the first entity is a seller of a productrepresented by the first title object, and the second entity is a buyerof the product, the at least one computing device is further configuredto: facilitate selection of the product by the buyer; facilitatetransmission of the first title object from the seller to the lockbox inresponse to selection of the product by the buyer; facilitatetransmission of a sales order from the seller to the buyer, the salesorder identifying terms of sale and including information relating tothe lockbox; and facilitate transmission of a payment title object fromthe buyer to the lockbox using the information, receipt of the paymenttitle object by the lockbox corresponding to one of the at least onecriterion.
 44. The platform of claim 43 wherein the at least onecomputing device is further configured to: notify the seller that thepayment title object has been received by the lockbox; facilitateverification of payment by the seller; and facilitate capture of fundsby the seller using the payment title object.
 45. The platform of claim30 wherein the at least one computing device is further configured to:receive a second title object from the second entity with the lockboxbefore releasing the first title object; control access to the first andsecond title objects such that the first entity has restricted access tothe second title object and the second entity has restricted access tothe first title object; and release the second title object from thelockbox to the first entity upon satisfaction of the at least onecriterion.
 46. The platform of claim 45 wherein the restricted accessenables the first and second entities to preform at least on of viewingof, verification of, inspection of, and sampling of the second and firsttitle objects.
 47. The platform of claim 30 wherein the first titleobject represents a right to access digital content, and wherein thedigital content is maintained separately from the first title object,and wherein the at least one computing device is configured tofacilitate access to at least a portion of the digital content by thesecond entity under control of the lockbox.
 48. The platform of claim 30wherein the first title object represents a right to access digitalcontent, and wherein at least a portion of the digital content isembedded in the first title object, and wherein the at least onecomputing device is configured to facilitate access to the portion ofthe digital content by the second entity under control of the lockbox.49. The platform of claim 30 wherein the at least one computing deviceis operable to generate a record of the receipt and release of the firsttitle object by the lockbox.
 50. The platform of claim 30 wherein the atleast one computing device is configured to facilitate manualverification of satisfaction of the at least one criterion by at leastone of the first entity and the second entity.
 51. The platform of claim30 wherein the at least one computing device is configured to facilitateverification of satisfaction of the at least one criterion by anautomated process associated with at least one of the first entity andthe second entity.
 52. The platform of claim 30 wherein the at least onecomputing device is configured to: receive at least one additional titleobject from any of the first, second, and at least one additional entitywith the lockbox; and release the at least one additional title objectfrom the lockbox to any of the first, second, and at least oneadditional entities upon satisfaction of the at least one criterion. 53.The platform of claim 30 wherein the lockbox is operable to facilitateany of multi-party trades, dependent trades, nested trades, and complextrades.
 54. The platform of claim 53 wherein the complex trades relateto any of service level agreements, insurance agreements, legal recourseagreements, guarantee agreements, and content inspection agreements.